In coordination with Australia and the United Kingdom, the United States is today sanctioning Zservers, a Russia-based bulletproof hosting services provider, and two Russian nationals (Bolshakov, Aleksandr Sergeyevich and Mishin, Alexander Igorevich) serving as Zservers operators for their roles in supporting LockBit ransomware attacks.
This was disclosed in a statement by the U.S. Department of State.Â
As a BPH service provider, Zservers provided cybercriminals access to specialized servers and other computer infrastructure designed to resist law enforcement action.
Russia continues to offer a safe harbour for cybercriminals where groups are free to launch and support ransomware attacks against the United States and its allies and partners, said the statement.
“Today’s actions underscore the United States’ commitment, along with our international partners, to combating cybercrime and degrading the networks that enable cybercriminals to target our citizens,” it added. “We will continue to stand with our partners to disrupt ransomware actors that threaten our economies and critical infrastructure.”
The Department of the Treasury’s actions today were taken pursuant to Executive Order 13694, as further amended by E.O. 14144.Â
The Department of the Treasury’s actions today follow two Department of State reward offers totalling up to $15 million for owners, operators, administrators, and affiliates of the LockBit ransomware variant, as well as a separate reward offer totalling up to $10 million for LockBit ransomware administrator Dmitry Khoroshev.Â
The reward offers were approved under the Department’s Transnational Organised Crime Rewards Program.
