A Ukrainian nationwide extradited to the US from Eire final 12 months has pleaded responsible to conspiracy expenses in reference to Operation Conti ransomware.
The U.S. Division of Justice introduced Thursday that 44-year-old Oleksiy Oleksiyovich Litvinenko has pleaded responsible to conspiracy to commit wire fraud for his function within the 2021-2022 Conti ransomware assaults.
Prosecutors mentioned Litvinenko and his co-conspirators deployed Conti ransomware to sufferer networks in the US and overseas, stealing knowledge and encrypting units to pressure Bitcoin ransom funds.
In keeping with the Justice Division, Litvinenko admitted to collaborating within the Conti conspiracy round September 2021 and possessing knowledge stolen from eight victims in the US and 4 victims overseas.
He additionally admitted that he joined a staff run by one other Conti co-conspirator and labored on coding a “loader,” a kind of malware used to load the software program wanted to hold out assaults.
Operation Conti ransomware was probably the most prolific cybercrime teams energetic on the time, focusing on hospitals, companies, colleges, and authorities businesses all over the world.
Court docket paperwork say Conti focused greater than 1,000 victims all over the world and picked up greater than $150 million in ransom cash.
The responsible plea follows Litvinenko’s extradition from Eire to the US after his arrest in July 2023. Litvinenko now faces a most sentence of 20 years in jail.
The Conti ransomware gang emerged from the Ryuk cybercrime group and had shut ties to the TrickBot malware syndicate.
The group was infamous for large-scale assaults on healthcare establishments, governments, and companies, and was shut down in 2022 following leaks of inner chats and elevated legislation enforcement stress.
Safety researchers imagine that former Conti members later break up into different ransomware teams, together with BlackCat, Black Basta, ZEON, Hive, Quantum, BlackByte, Karakurt, and Silent Ransom Group.
In September 2023, the US and the UK additionally sanctioned and indicted 9 Russian people concerned within the TrickBot and Conti ransomware cybercrime operations for assaults on greater than 900 victims worldwide.
Safety groups doc 54% of profitable assaults and subject a warning on solely 14%. The remaining strikes invisibly via the setting.
Picus’ whitepaper reveals the right way to check your SIEM and EDR guidelines in breach and assault simulations to make sure threats go undetected.
Get the white paper
