The U.S. sanctioned VPN provider First VPN Service (1VPNS) and its administrator for enabling ransomware attacks on U.S. infrastructure. The sanctions aim to disrupt operations of ransomware gangs by targeting service providers and suppliers used in their attacks.
The U.S. government sanctioned First VPN Service (1VPNS) and its Ukrainian administrator Dmytro Rashevskyi on Monday for allegedly facilitating ransomware attacks. The U.S. Treasury Department's press release outlined that 1VPNS provided tools that helped ransomware groups conceal their identities and evade detection, contributing to significant financial losses to critical infrastructure across the country.
First VPN Service allegedly allowed ransomware groups to operate with anonymity by providing infrastructure that criminal organizations could exploit. Rashevskyi is reported to have used fake identities to secure services from providers hesitant to work with him due to previous complaints about fraudulent activities linked to 1VPNS servers.
In addition to Rashevskyi, the U.S. also sanctioned Yegeniy Vladimirovich Silayev, a Belarusian accused of selling 'cryptors' to enhance malware concealment. Silayev's involvement highlights the broader ecosystem of support that facilitates ransomware attacks beyond direct operating groups.
These sanctions aim to hinder not only the operations of the sanctioned individuals but also the broader infrastructure that ransomware groups rely on. By disrupting service providers and intermediaries, the U.S. intends to cumulatively degrade the functionality of numerous cybercriminal organizations.
1VPNS has been in operation since 2014 and is known to be promoted on Russian cybercrime forums for its compatibility with various malicious activities, including supporting botnets. The company has previously faced law enforcement actions, including takedowns led by European authorities and the FBI, indicating its significant role in the cybercrime landscape.
β¨ This summary was generated by AI from the outlets' reporting listed below. It is not independently verified and may contain errors β check the original sources. How BrevFeed works β
The U.S. sanctioned VPN provider First VPN Service (1VPNS) and its administrator for enabling ransomware attacks on U.S. infrastructure. The sanctions aim to disrupt operations of ransomware gangs by targeting service providers and suppliers used in their attacks.