Amin Timovich Stigal, a 22-year-old Russian national, has been indicted in the U.S. for his alleged involvement in orchestrating destructive cyber attacks against Ukraine and its allies prior to Russia’s full-scale invasion in early 2022. Linked to the Russian military intelligence (GRU), Stigal remains at large and faces up to five years in prison if convicted. The U.S. Department of State’s Rewards for Justice program has offered a reward of up to $10 million for information leading to his whereabouts or details about the cyber attacks.
The attacks, utilizing a wiper malware known as WhisperGate (or PAYWIPE), targeted Ukrainian government, non-profit, and IT entities starting from mid-January 2022. Microsoft, identifying the malware under its moniker Cadet Blizzard, highlighted its capability to render infected systems inoperable once activated. Stigal and his accomplices are accused of using U.S.-based services to distribute WhisperGate and exfiltrate sensitive data, including health records, which were later advertised for sale on cybercrime forums.
In addition to targeting Ukraine, Stigal’s group allegedly used the same infrastructure to probe computers of a federal government agency in Maryland between August 2021 and February 2022. This activity mirrored their initial methods used against Ukrainian networks. The charges underscore broader concerns about cyber warfare and its implications for international relations, as nations grapple with defending against increasingly sophisticated cyber threats orchestrated by state actors.
