Britain, the US and Australia have sanctioned and unmasked a senior Russian leader of the notorious cybercrime gang LockBit, the British government said.
Dmitry Khoroshev will face asset freezes and travel bans after being identified as one of the leaders of LockBit, the ransomware group which has digitally extorted over US$1 billion ($1.52 billion) from victims worldwide, it said.
“These sanctions are hugely significant and show that there is no hiding place for cyber criminals like Dmitry Khoroshev, who wreak havoc across the globe. He was certain he could remain anonymous, but he was wrong,” Graeme Biggar, director general of Britain’s National Crime Agency, said in a statement.
LockBit was first disrupted by the NCA, US Department of Justice, FBI and Europol in February, in an unprecedented campaign that saw the gang’s darkweb site hijacked by police and used to leak internal information about the group and the people behind it.
“In sanctioning one of the leaders of LockBit we are taking direct action against those who continue to threaten global security, while simultaneously exposing the malicious cyber-criminal activity emanating from Russia,” Britain’s sanctions minister Anne-Marie Trevelyan said in a statement.
Ransomware is malicious software that encrypts data; Lockbit and its affiliates make money by coercing its targets into paying ransom to decrypt or unlock that data with a digital key.
The gang’s digital extortion tools have been used against some of the world’s largest organisations.
Its affiliates are like-minded criminal groups that Lockbit recruits to wage attacks using those tools.
Those affiliates carry out the attacks, and provide Lockbit a cut of the ransom, which is usually demanded in the form of cryptocurrency, making it harder to trace.
In February, the US announced it had charged two Russian nationals with deploying Lockbit ransomware against companies and groups around the world. Both men were also sanctioned by the US Treasury.
Before it was seized by law enforcement, Lockbit’s website displayed an ever-growing gallery of victim organisations that was updated nearly daily.
Next to their names were digital clocks that showed the number of days left to the deadline given to each organisation to provide ransom payment.
International police agencies once again turned that platform against the gang itself to unmask Khoroshev and published a wanted poster promising a US$10 million award for information that would lead to Khoroshev’s arrest.
According to a 26-count US indictment unsealed this week, Khoroshev received at least US$100 million in Bitcoin payments from LockBit’s activity.
Reuters was unable to find contact information for Khoroshev or his lawyer.