- Yaroslav Vasinskyi, 24, helped carry out more than 2,500 ransomware attacks
- He stole and encrypted victims’ data and demanded cash to return it safely.
- Threatened to make the data public if they refused to pay the ransom.
A Ukrainian man has been sentenced to 13 years and seven months in prison for his role in carrying out more than 2,500 ransomware attacks around the world.
Yaroslav Vasinskyi, 24, demanded more than $700 million in ransom payments for the data he stole from his victims, or he would make it public.
He was also ordered to pay more than $16 million in restitution, the U.S. Department of Justice said.
Vasinskyi carried out the ransomware attacks using the Sodinokibi/REvil ransomware variant and publicly exposed victims’ data when they did not want to pay.
“Today, the FBI’s close collaboration with our global partners has once again ensured that a cybercriminal who thought he was beyond our reach faces the consequences of his actions,” said FBI Director Christopher Wray.
Vasinskyi was arrested after crossing the border into Poland and US officials are now working to extradite him.
Vasinskyi was responsible for the July 2021 ransomware attack on Florida software provider Kaseya, the department previously said.
The Ukrainian national was accused in the indictment of breaking into Kaseya and simultaneously distributing the REvil ransomware with accomplices to up to 1,500 Kaseya customers.
Their data was encrypted and some customers were forced to shut down for days, the Justice Department said.
“Using ransomware, malicious actors around the world can cripple American businesses in a matter of minutes,” said Leigha Simonton, US attorney for the Northern District of Texas, where Vasinskyi was tried.
Vasinskyi, who was extradited to the United States from Poland, had previously pleaded guilty to an 11-count indictment.
He was charged with conspiracy to commit computer fraud and activities, damage to protected computers and conspiracy to commit money laundering.
Principal Deputy Attorney General Nicole Argentieri, head of the Justice Department’s Criminal Division, said it hacked thousands of computers around the world.
“Although the conspirators tried to cover their tracks by laundering the victims’ payments, Vasinskyi was unable to hide from the authorities,” he said.
“Today, the FBI’s close collaboration with our global partners has once again ensured that a cybercriminal who thought he was beyond our reach faces the consequences of his actions,” said FBI Director Christopher Wray.
Vasinskyi was allegedly responsible for the July 2021 ransomware attack on Florida software provider Kaseya, the department previously said.
“Vasinskyi’s sentencing today should serve as a reminder to ransomware actors around the world: we will track him down and bring him to justice.”
Ransomware is malicious software designed to encrypt data on victims’ computers, allowing criminals to demand a ransom payment in exchange for the decryption key.
The co-conspirators demanded ransom payments in cryptocurrency and used cryptocurrency exchanges and mixing services to hide their ill-gotten gains.
To increase their ransom demands, the Sodinokibi/REvil co-conspirators also publicly exposed their victims’ data when the victims failed to pay the ransom demands.