US, UK, Australia Sanction Russian Ransomware Leader
The U.S., the U.K. and Australia this week sanctioned Russian national Dmitry Yuryevich Khoroshev, a leader of the Russia-based LockBit ransomware group, which the Office of Foreign Assets Control labeled “one of the most active ransomware groups in the world.”
Sign up for a free preview to unlock the rest of this article
Timely, relevant coverage of court proceedings and agency rulings involving tariffs, classification, valuation, origin and antidumping and countervailing duties. Each day, Trade Law Daily subscribers receive a daily headline email, in-depth PDF edition and access to all relevant documents via our trade law source document library and website.
OFAC said Khoroshev serves in several “operational and administrative roles” for the cybercrime group, and he has helped to upgrade LockBit’s infrastructure, recruit new developers and manage LockBit affiliates. The group has targeted over 2,500 victims and has allegedly received more than $500 million in ransom payments, OFAC said.
The U.K.’s National Crime Agency said LockBit has targeted over 100 hospitals and healthcare companies, and Australia said the group’s ransomware was responsible for 18% of total reported Australian ransomware incidents in 2022-23.
Along with the designation, DOJ indicted Khoroshev May 7 on various fraud and extortion charges. The State Department announced a reward of up to $10 million for information leading to Khoroshev’s arrest.