Four REvil Ransomware Members Sentenced in Rare Russian Cybercrime Convictions

Four members of the notorious REvil ransomware operation have received prison sentences in Russia, marking a noteworthy case of legal repercussions for domestic cybercriminals. This sentencing process was initiated by a court in St. Petersburg, which found Artem Zaets, Alexei Malozemov, Daniil Puzyrevsky, and Ruslan Khansvyarov guilty of several crimes, including the illegal circulation of financial transaction methods. Both Puzyrevsky and Khansvyarov were also convicted of malware distribution and usage.

The sentences handed down reflect the severity of their crimes, with Zaets and Malozemov being sentenced to 4.5 and 5 years, respectively, while Khansvyarov and Puzyrevsky received 5.5 and 6 years. These individuals were part of a larger group of 14 who had been detained in connection to REvil’s activities. Notably, a prior report indicated that eight members had been charged in early 2022, showcasing ongoing law enforcement actions against this cybercriminal organization.

Continuing legal actions involve four other members—Andrei Bessonov, Mikhail Golovachuk, Roman Muromsky, and Dmitry Korotaev—who are currently facing prosecution related to additional offenses tied to unauthorized computer access. This illustrates the ongoing crackdown on cybercrime in Russia, especially concerning REvil’s well-documented history of ransomware attacks.

The REvil ransomware group was recognized as one of the most active and damaging in its field, conducting numerous attacks until its dismantling following arrests by Russia’s Federal Security Service (FSB). This unprecedented operation has led to significant developments in how cybercriminals are prosecuted within the country.

In a related context, 24-year-old Yaroslav Vasinskyi, a Ukrainian national, has recently been sentenced in the U.S. to 13 years in prison for orchestrating over 2,500 attacks involving REvil, amassing demands for ransoms exceeding $700 million. This high-profile case further underscores the international dimensions of the battle against ransomware.

Additionally, the sentencing of REvil members coincides with an official investigation launched in Russia into Cryptex and UAPS, entities that the U.S. has sanctioned for providing money laundering services to cybercriminals. This investigation highlights the broader implications of the cybercrime ecosystem and the efforts by authorities to dismantle networks that facilitate such activities.

In summary, these developments serve as a significant indicator of the concerted efforts by law enforcement in Russia to tackle cybercrime and suggest a potential shift towards holding cybercriminals accountable in their home country. The recent sentences are a rare but crucial step in this ongoing struggle against the pervasive threat posed by ransomware and cybercriminal enterprises.