← All stories
● Covered by 1 source Β· 1 reportHigh impact

US sanctions VPN service used by ransomware groups for facilitating attacks

Aggregated by BrevFeed security Β· updated 3h ago
πŸ”– Save

The U.S. sanctioned VPN provider First VPN Service (1VPNS) and its administrator for enabling ransomware attacks on U.S. infrastructure. The sanctions aim to disrupt operations of ransomware gangs by targeting service providers and suppliers used in their attacks.

Key points

Overview of the Sanctions

The U.S. government sanctioned First VPN Service (1VPNS) and its Ukrainian administrator Dmytro Rashevskyi on Monday for allegedly facilitating ransomware attacks. The U.S. Treasury Department's press release outlined that 1VPNS provided tools that helped ransomware groups conceal their identities and evade detection, contributing to significant financial losses to critical infrastructure across the country.

Mechanisms of Operation

First VPN Service allegedly allowed ransomware groups to operate with anonymity by providing infrastructure that criminal organizations could exploit. Rashevskyi is reported to have used fake identities to secure services from providers hesitant to work with him due to previous complaints about fraudulent activities linked to 1VPNS servers.

Related Individuals and Activities

In addition to Rashevskyi, the U.S. also sanctioned Yegeniy Vladimirovich Silayev, a Belarusian accused of selling 'cryptors' to enhance malware concealment. Silayev's involvement highlights the broader ecosystem of support that facilitates ransomware attacks beyond direct operating groups.

Impact of the Sanctions

These sanctions aim to hinder not only the operations of the sanctioned individuals but also the broader infrastructure that ransomware groups rely on. By disrupting service providers and intermediaries, the U.S. intends to cumulatively degrade the functionality of numerous cybercriminal organizations.

Background on 1VPNS

1VPNS has been in operation since 2014 and is known to be promoted on Russian cybercrime forums for its compatibility with various malicious activities, including supporting botnets. The company has previously faced law enforcement actions, including takedowns led by European authorities and the FBI, indicating its significant role in the cybercrime landscape.

✨ This summary was generated by AI from the outlets' reporting listed below. It is not independently verified and may contain errors β€” check the original sources. How BrevFeed works β†’

Reporting from

The U.S. sanctioned VPN provider First VPN Service (1VPNS) and its administrator for enabling ransomware attacks on U.S. infrastructure. The sanctions aim to disrupt operations of ransomware gangs by targeting service providers and suppliers used in their attacks.