A member of the infamous Ryuk ransomware operation who specialised in gaining preliminary entry to company networks has been extradited to america.
The suspect is a 33-year-old overseas man who was arrested in April 2025 in his residence in Kyiv on the request of the FBI. He was extradited to america yesterday, June 18.
In 2023, the Ukrainian cyber police, the Nationwide Police, and worldwide regulation enforcement companions started investigating a ransomware operation whose members carried out assaults on corporations in France, Norway, Germany, the Netherlands, Canada, and the USA.
This operation led to the identification, seizure of gadgets, and arrest of a number of cybercriminals residing in Ukraine for his or her involvement within the LockerGoga, MegaCortex, Hive, and Dharma ransomware households.
In an announcement, Ukraine’s Nationwide Police says the investigation additionally allowed them to determine a Ryuk ransomware member who specialised in getting access to company networks after which handing it off to different members to steal knowledge and deploy the ransomware.
“By way of the evaluation of the knowledge obtained on account of the investigative actions, it was attainable to moreover determine a 33-year-old member of the group who was engaged in trying to find vulnerabilities within the company networks of the sufferer corporations,” reads the announcement.
“The information obtained by the hacker was utilized by his accomplices to plan and perform cyberattacks.”
Whereas the identify of the 33-year-old man is at the moment unknown, Ukraine says that the suspect was beforehand positioned on a global needed checklist by the FBI and was charged with quite a few crimes by america.
The Ryuk ransomware gang was lively between 2018 and the center of 2020, when it was chargeable for quite a few assaults on organizations throughout nearly all sectors, together with healthcare through the Covid pandemic.
In 2020, the ransomware gang rebranded because the Conti ransomware operation, which grew to become one of the crucial lively gangs on the time.
In 2022, the Conti ransomware gang shut down, splintering into quite a few teams, with some nonetheless lively in the present day.
Researchers beforehand tracked ransom funds to the cybercrime operation and estimate that Ryuk earned $150 million whereas lively.
BleepingComputer contacted the Division of Justice with questions in regards to the extradition and can replace the story if we obtain a response.
Patching used to imply advanced scripts, lengthy hours, and countless hearth drills. Not anymore.
On this new information, Tines breaks down how trendy IT orgs are leveling up with automation. Patch quicker, scale back overhead, and give attention to strategic work — no advanced scripts required.
