A 20-year-old Russian national named Ruslan Astamirov has been arrested by U.S. law enforcement for his alleged involvement in deploying the notorious LockBit ransomware. Astamirov is accused of executing at least five attacks on victims across the U.S., Asia, Europe, and Africa.
Furthermore, law enforcement was able to trace a portion of a victim’s ransom payment to Astamirov’s virtual currency address. This marks the second arrest of a Russian national associated with LockBit in the past six months, reflecting increased efforts to disrupt cybercrime operations.
In addition to Astamirov’s arrest, the Justice Department recently indicted another individual, Mikhail Matveev, for his alleged participation in separate schemes involving LockBit, Babuk, and Hive ransomware variants.
LockBit, which emerged in January 2020 and is believed to have links to Russia, has been responsible for over 1,400 attacks worldwide, resulting in ransom demands exceeding $100 million and substantial bitcoin payments. It has been identified as one of the biggest cybersecurity threats faced by governments and organizations globally.
If convicted, Astamirov could face a prison sentence of up to 20 years and a maximum fine of $250,000 or double the financial gain or loss from the crime, whichever is higher. Deputy Attorney General Lisa O. Monaco emphasized the commitment to utilizing all available tools to disrupt cybercrime, underscoring that while cybercriminals may continue to evade capture, they cannot hide indefinitely.
The arrest and indictment of individuals associated with LockBit demonstrate ongoing efforts to combat this dangerous ransomware group and protect victims from its malicious activities.
