Canadian-Russian Cybercriminal Sentenced for LockBit Ransomware Scheme
A 33-year-old dual Canadian-Russian national, Mikhail Vasiliev, has been sentenced to four years in prison for his involvement in a global ransomware operation that infected over 1,000 victims with LockBit ransomware. Vasiliev, who resided in Ontario at the time of his arrest, was apprehended in November 2022 and charged with conspiracy to infect computers with ransomware and extort victims. Last month, he pleaded guilty to multiple cyber extortion, mischief, and weapons charges.
Incriminating Evidence
During a raid on Vasiliev’s residence in Bradford, Ontario, law enforcement discovered incriminating evidence. Investigators found Vasiliev working on a laptop displaying a log-in screen to the LockBit control panel used for launching cyber attacks. Additionally, a seed phrase credential for a bitcoin wallet address associated with extorted funds was uncovered.
- Screenshots of message exchanges with a user named LockBitSupp discussing stolen data and victim information were found
- A file titled “TARGETLIST” contained a list of potential victims targeted by LockBit
- Instructions for deploying LockBit ransomware and employee credentials from a previous victim were also discovered
LockBit Ransomware Operation
LockBit operated under the moniker “ABCD” and amassed significant profits by offering ransomware-as-a-service to affiliates who carried out the actual hacking. The FBI estimated that LockBit extorted over $120 million from victims worldwide.
Law Enforcement Action
Authorities seized control of LockBit’s server infrastructure, disrupting the group’s attack coordination and ransom payment operations. Multiple arrests and indictments were made, and cryptocurrency accounts linked to the ransomware operation were frozen.
Revival Scare
Despite the crackdown, a resurgence of LockBit ransomware attacks occurred soon after. Concerns were raised when a key LockBit member claimed that law enforcement only disrupted a part of their infrastructure and proceeded to hack new victims.
Legal Proceedings
Judge Michelle Fuerst labeled Vasiliev as a “cyber-terrorist” and condemned his actions as calculated and greed-driven during the sentencing. Vasiliev’s defense attorney acknowledged his client’s culpability and acceptance of responsibility for his crimes.
Image/Photo credit: source url