{"id":8038,"date":"2023-02-09T05:35:00","date_gmt":"2023-02-08T20:35:00","guid":{"rendered":"https:\/\/cyberenso.jp\/?p=8038"},"modified":"2023-03-02T05:39:54","modified_gmt":"2023-03-01T20:39:54","slug":"us-and-uk-announce-sanction-against-trickbot-and-conti-ransomware-members","status":"publish","type":"post","link":"https:\/\/cyberenso.jp\/en\/us-and-uk-announce-sanction-against-trickbot-and-conti-ransomware-members\/","title":{"rendered":"US and UK announce sanction against TrickBot and Conti ransomware members"},"content":{"rendered":"\t\t<div data-elementor-type=\"wp-post\" data-elementor-id=\"8038\" class=\"elementor elementor-8038\" data-elementor-post-type=\"post\">\n\t\t\t\t\t\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-abc2982 elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"abc2982\" data-element_type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-1896642\" data-id=\"1896642\" data-element_type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t\t\t<div class=\"elementor-element elementor-element-a1a51d4 elementor-widget elementor-widget-text-editor\" data-id=\"a1a51d4\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<p>On Thursday 9th of February 2023, the United States and the United Kingdom sanctioned seven individuals for their involvement in the TrickBot malware operation. This sanction is the first of its kind for the UK to disrupt Russian cybercrime and ransomware.<\/p><p>As a result of these sanctions, all property and funds in the United States and the United Kingdom belonging to the following individuals have been blocked:<\/p><ul><li><strong>Vitaly Kovalev<\/strong> \u2013 A senior figure within the Trickbot Group. And has also been charged with conspiracy to commit bank fraud and eight counts of bank fraud in connection with a series of intrusions into victim bank accounts held at various U.S.-based financial institutions that occurred in 2009 and 2010, predating his involvement in the Trickbot Group.<\/li><li><strong>Maksim Mikhailov<\/strong>\u2013 Involved in the development for the Trickbot Group.<\/li><li><strong>Valentin Karyagin<\/strong> \u2013 Involved in the development of ransomware and other malware projects.<\/li><li><strong>Mikhail Iskritskiy<\/strong>\u2013 Involved in money-laundering and fraud projects for the Trickbot Group.<\/li><li><strong>Dmitry Pleshevskiy<\/strong>\u2013 Involved in injecting malicious code into websites to steal victims\u2019 credentials.<\/li><li><strong>Ivan Vakhromeyev<\/strong> \u2013 Worked as a manager for the Trickbot Group.<\/li><li><strong>Valery Sedletski<\/strong>\u2013 Worked as an administrator for the Trickbot Group, including managing servers.<\/li><\/ul><p>Therefore, this sanction has blocked individuals and companies from performing transactions with the sanctioned individuals, including paying ransoms. Furthermore, this could cause issues for other ransomware operations as these individuals likely moved on to other ransomware operations after the Conti operation shut down. Therefore could hamper the payment of ransoms to other ransomware gangs known to have members previously affiliated with Conti. The possible ransomware gangs that might be impacted include BlackCat, Royal Group, AvosLocker, Karakurt, LockBit, Silent Ransom, and DagonLocker.<\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"<p>On Thursday 9th of February 2023, the United States and the United Kingdom sanctioned seven individuals for their involvement in the TrickBot malware operation. This sanction is the first of its kind for the UK to disrupt Russian cybercrime and ransomware. As a result of these sanctions, all property and funds in the United States and the United Kingdom belonging<span class=\"excerpt-hellip\"> [\u2026]<\/span><\/p>\n","protected":false},"author":1,"featured_media":8043,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6,12,9,2,7,8,1],"tags":[],"class_list":["post-8038","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-latest_news","category-read_article","category-ransomware_criminals","category-ce_news","category-by_country","category-industry_sector","category-uncategorized"],"acf":[],"jetpack_featured_media_url":"https:\/\/i0.wp.com\/cyberenso.jp\/wp-content\/uploads\/2023\/03\/Picture1-6.jpg?fit=1379%2C919&ssl=1","_links":{"self":[{"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/posts\/8038"}],"collection":[{"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/comments?post=8038"}],"version-history":[{"count":6,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/posts\/8038\/revisions"}],"predecessor-version":[{"id":8046,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/posts\/8038\/revisions\/8046"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/media\/8043"}],"wp:attachment":[{"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/media?parent=8038"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/categories?post=8038"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/tags?post=8038"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}