Three Russians Indicted in $62M Cybercrime Operation Targeting U.S. Institutions

Three Russians Indicted in $62M Cybercrime Operation Targeting U.S. Institutions

In a major crackdown on cybercrime, three Russian nationals have been indicted for their involvement in a complex cybercrime operation that allegedly facilitated a range of illicit activities, including ransomware attacks, malware distribution, and phishing schemes. U.S. authorities estimate that these operations led to losses exceeding $62 million for victims in the United States and abroad.

The U.S. Attorney’s Office for the Northern District of Ohio announced the unsealing of the indictment following a thorough seven-year investigation. Alongside the criminal charges, the U.S. Department of State has offered a reward of up to $10 million for information regarding associates connected to foreign governments involved in this operation.

Indictment Details: Key Figures and Entities

The indictment, issued by a federal grand jury in December 2024, identifies the following individuals:

  • Alexander Alexandrovich Volosovik, 43, from St. Petersburg, Russia
  • Kirill Andreevich Zatolokin, 34, from St. Petersburg, Russia
  • Yulia Vladimirovna Pankova, 29, from St. Petersburg, Russia

The indictment also implicates two companies, Media Land LLC and ML.Cloud LLC. The defendants face serious charges, including conspiracy to commit computer fraud, wire fraud, money laundering, and aiding cybercriminal activities. Assistant Attorney General A. Tysen Duva noted that the defendants allegedly operated a criminal infrastructure from overseas, which supported attacks on critical U.S. institutions and posed significant risks to public safety.

Bulletproof Hosting: A Critical Enabler of Cybercrime

Court documents indicate that Media Land and ML.Cloud provided internet infrastructure and server hosting services specifically designed to help cybercriminals evade law enforcement. These companies allegedly operated from St. Petersburg while utilizing infrastructure in various countries, including China, Finland, the Netherlands, and the United States.

The services offered by these entities included bulletproof hosting, allowing criminal clients to deploy malware and ransomware, extort victims for money and cryptocurrency, register fraudulent domains, operate criminal marketplaces, and execute phishing and brute-force attacks. Investigators noted that the companies also provided technical support to their cybercriminal customers, enabling malicious campaigns to continue while avoiding detection.

Impact on Critical Sectors Across the U.S.

The operation reportedly targeted dozens of organizations across 21 U.S. states and multiple countries. Victims included:

  • Banks
  • Schools
  • Government entities
  • Hospitals
  • Media companies

In Ohio, communities affected by these cybercrimes include Akron, Brookfield, Canton, Cleveland, Elyria, Medina, Findlay, Solon, and Valley View. Other impacted states include California, Florida, Georgia, Illinois, Louisiana, Maryland, Massachusetts, Michigan, Minnesota, New Hampshire, New York, North Carolina, Pennsylvania, Tennessee, Texas, Utah, Virginia, Washington, Wisconsin, and Delaware. International victims have been identified in Australia, Canada, the European Union, the United Arab Emirates, and the United Kingdom.

FBI Cyber Division Assistant Director Brett Leatherman stated that Media Land facilitated malicious activities that resulted in tens of millions of dollars in losses, affecting victims across multiple countries.

Reward Offer and International Sanctions

In response to the indictment, the U.S. Department of State’s Rewards for Justice program has announced a reward of up to $10 million for actionable information regarding associates of the indicted individuals linked to foreign governments or their cyber activities. The program also indicated that relocation assistance may be available for qualifying information.

The indictment follows coordinated international actions against the alleged operators. In November 2025, the U.S. Department of the Treasury’s Office of Foreign Assets Control, in collaboration with authorities from the United Kingdom and Australia, sanctioned Media Land for its role in facilitating global ransomware operations and other malicious cyber activities. The sanctions also targeted Volosovik, Zatolokin, and Pankova individually, along with Media Land subsidiaries.

On July 13, the European Union announced sanctions against the companies and key individuals as part of broader efforts to disrupt cybercrime infrastructure.

Collaborative International Investigation

The investigation was led by the FBI Cleveland Division, with support from the Cybersecurity and Infrastructure Security Agency (CISA) and the Office of Foreign Assets Control. Authorities received assistance from the National Police of the Netherlands, the Public Prosecutor’s Office of the Netherlands, the United Kingdom’s National Crime Agency, the United Kingdom Foreign Commonwealth and Development Office, the Australian Department of Foreign Affairs and Trade, and the Australian Federal Police.

Officials from CISA and partner agencies emphasized that disrupting bulletproof hosting providers is essential, as these services form a critical part of the cybercriminal ecosystem, enabling ransomware, phishing, malware, and other malicious operations while allowing threat actors to remain anonymous.

For further details on this case, visit the source: cyberwarriorsmiddleeast.com.

Explore the latest digital editions of FAME Delivered in the Magazine section: https://famedelivered.com/magazine/

Published on 2026-07-15 11:46:00 • By FAME Delivered News Desk

Three Russians Indicted in $62M Cybercrime Operation Targeting U.S. Institutions

Three Russians Indicted in $62M Cybercrime Operation Targeting U.S. Institutions

In a major crackdown on cybercrime, three Russian nationals have been indicted for their involvement in a complex cybercrime operation that allegedly facilitated a range of illicit activities, including ransomware attacks, malware distribution, and phishing schemes. U.S. authorities estimate that these operations led to losses exceeding $62 million for victims in the United States and abroad.

The U.S. Attorney’s Office for the Northern District of Ohio announced the unsealing of the indictment following a thorough seven-year investigation. Alongside the criminal charges, the U.S. Department of State has offered a reward of up to $10 million for information regarding associates connected to foreign governments involved in this operation.

Indictment Details: Key Figures and Entities

The indictment, issued by a federal grand jury in December 2024, identifies the following individuals:

  • Alexander Alexandrovich Volosovik, 43, from St. Petersburg, Russia
  • Kirill Andreevich Zatolokin, 34, from St. Petersburg, Russia
  • Yulia Vladimirovna Pankova, 29, from St. Petersburg, Russia

The indictment also implicates two companies, Media Land LLC and ML.Cloud LLC. The defendants face serious charges, including conspiracy to commit computer fraud, wire fraud, money laundering, and aiding cybercriminal activities. Assistant Attorney General A. Tysen Duva noted that the defendants allegedly operated a criminal infrastructure from overseas, which supported attacks on critical U.S. institutions and posed significant risks to public safety.

Bulletproof Hosting: A Critical Enabler of Cybercrime

Court documents indicate that Media Land and ML.Cloud provided internet infrastructure and server hosting services specifically designed to help cybercriminals evade law enforcement. These companies allegedly operated from St. Petersburg while utilizing infrastructure in various countries, including China, Finland, the Netherlands, and the United States.

The services offered by these entities included bulletproof hosting, allowing criminal clients to deploy malware and ransomware, extort victims for money and cryptocurrency, register fraudulent domains, operate criminal marketplaces, and execute phishing and brute-force attacks. Investigators noted that the companies also provided technical support to their cybercriminal customers, enabling malicious campaigns to continue while avoiding detection.

Impact on Critical Sectors Across the U.S.

The operation reportedly targeted dozens of organizations across 21 U.S. states and multiple countries. Victims included:

  • Banks
  • Schools
  • Government entities
  • Hospitals
  • Media companies

In Ohio, communities affected by these cybercrimes include Akron, Brookfield, Canton, Cleveland, Elyria, Medina, Findlay, Solon, and Valley View. Other impacted states include California, Florida, Georgia, Illinois, Louisiana, Maryland, Massachusetts, Michigan, Minnesota, New Hampshire, New York, North Carolina, Pennsylvania, Tennessee, Texas, Utah, Virginia, Washington, Wisconsin, and Delaware. International victims have been identified in Australia, Canada, the European Union, the United Arab Emirates, and the United Kingdom.

FBI Cyber Division Assistant Director Brett Leatherman stated that Media Land facilitated malicious activities that resulted in tens of millions of dollars in losses, affecting victims across multiple countries.

Reward Offer and International Sanctions

In response to the indictment, the U.S. Department of State’s Rewards for Justice program has announced a reward of up to $10 million for actionable information regarding associates of the indicted individuals linked to foreign governments or their cyber activities. The program also indicated that relocation assistance may be available for qualifying information.

The indictment follows coordinated international actions against the alleged operators. In November 2025, the U.S. Department of the Treasury’s Office of Foreign Assets Control, in collaboration with authorities from the United Kingdom and Australia, sanctioned Media Land for its role in facilitating global ransomware operations and other malicious cyber activities. The sanctions also targeted Volosovik, Zatolokin, and Pankova individually, along with Media Land subsidiaries.

On July 13, the European Union announced sanctions against the companies and key individuals as part of broader efforts to disrupt cybercrime infrastructure.

Collaborative International Investigation

The investigation was led by the FBI Cleveland Division, with support from the Cybersecurity and Infrastructure Security Agency (CISA) and the Office of Foreign Assets Control. Authorities received assistance from the National Police of the Netherlands, the Public Prosecutor’s Office of the Netherlands, the United Kingdom’s National Crime Agency, the United Kingdom Foreign Commonwealth and Development Office, the Australian Department of Foreign Affairs and Trade, and the Australian Federal Police.

Officials from CISA and partner agencies emphasized that disrupting bulletproof hosting providers is essential, as these services form a critical part of the cybercriminal ecosystem, enabling ransomware, phishing, malware, and other malicious operations while allowing threat actors to remain anonymous.

For further details on this case, visit the source: cyberwarriorsmiddleeast.com.

Explore the latest digital editions of FAME Delivered in the Magazine section: https://famedelivered.com/magazine/

Published on 2026-07-15 11:46:00 • By FAME Delivered News Desk

Latest Posts

Latest Posts

Don't Miss

Subscribe

To be updated with all the latest news, offers and special announcements.