DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Four members of REvil sentenced by Russian court

Posted on October 25, 2024 by Dissent

The following is a machine translation of a report at the Russian news outlet, Kommersant, concerning the sentencing of four members of the REvil ransomware group:

On Friday, October 25, the St. Petersburg Garrison Military Court announced the verdict against Artem Zayets, Aleksey Malozemov, Daniil Puzyrevsky and Ruslan Khansvyarov. The court found them guilty of illegal circulation of means of payment (Part 2 of Article 187 of the Criminal Code of the Russian Federation). Puzyrevsky and Khansvyarov were also found guilty of using and distributing malicious programs (Part 2 of Article 273 of the Criminal Code of the Russian Federation), a Kommersant-SPb correspondent reports from the courtroom.

Zayets and Malozemov were sentenced to 4.5 and 5 years in a general regime penal colony, respectively. Khansvyarov and Puzyrevsky received 5.5 and 6 years, respectively.

Read more at Kommersant[.]ru.

The arrests took place in January 2022, and defendants were detained since then. Others who were also arrested are still facing trials.

The arrests were surprising. One person involved with REvil who had communicated frequently with DataBreaches told DataBreaches that he had been questioned for about two hours by FSB and then released. But after a brief re-emergence of REvil and their discovery that the server was compromised, DataBreaches never heard from either of her REvil contacts again. DataBreaches suspects that one of her two Revil sources is one of those who was detained and possibly sentenced now.

If the initial detention of the defendants was a surprise, their continued detention and prosecutorial recommendations for sentences were even more surprising. That Russia would arrest any of its nationals was the result of President Biden urging Putin to do something to rein in Russian hackers who were attacking the U.S.  There were a number of arrests in the summer of 2021, and the arrest of the REvil members in early 2022 was at the request of the U.S. and based on information provided to Russia by the U.S.

But for reasons that are not clear, after the individuals were arrested, the U.S. didn’t pursue the case. DataBreaches expected the Russian government would then drop their case, but they didn’t.

None of the defendants have ever confessed. Their counsel has pointed out what they claim are significant procedural errors the prosecutors have made. But challenges have failed. More convictions and sentences can be expected.

DataBreaches simply cannot understand what Russia has done by prosecuting Russian hackers and sentencing them as they have. Russian hackers always felt pretty safe as long as they stayed on Russian soil and didn’t attack any CIS targets. As far as DataBreaches knows, REvil was a pro-Russian group and didn’t cross any lines they shouldn’t cross politically. So why have they been prosecuted? What does Russia gain by this?

Will Russian hackers no longer feel as safe on Russian soil? And how might that impact the likelihood of Russian hackers attacking U.S. entities?

 

 

Related posts:

  • Russia recommends prison sentence for REvil hackers
Category: Commentaries and AnalysesMalware

Post navigation

← US Healthcare at risk: Strengthening resiliency against ransomware attacks
Update to Change Healthcare breach →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Hunters International to provide free decryptors for all victims as they shut down (1)
  • SEC and SolarWinds Seek Settlement in Securities Fraud Case
  • Cyberattacks Disrupt Iran’s Bread Distribution, Payments Remain Frozen
  • Hacker with ‘political agenda’ stole data from Columbia, university says
  • Keymous+ Hacker Group Claims Responsibility for Over 700 Global DDoS Attacks
  • Data breach reveals Catwatchful ‘stalkerware’ is spying on thousands of phones
  • DOJ investigates ex-ransomware negotiator over extortion kickbacks
  • Hackers Using PDFs to Impersonate Microsoft, DocuSign, and More in Callback Phishing Campaigns
  • One in Five Law Firms Hit by Cyberattacks Over Past 12 Months
  • U.S. Sanctions Russian Bulletproof Hosting Provider for Supporting Cybercriminals Behind Ransomware

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Record-Breaking $1.55M CCPA Settlement Against Health Information Website Publisher
  • Ninth Circuit Reviews Website Tracking Class Actions and the Reach of California’s Privacy Law
  • US healthcare offshoring: Navigating patient data privacy laws and regulations
  • Data breach reveals Catwatchful ‘stalkerware’ is spying on thousands of phones
  • Google Trackers: What You Can Actually Escape And What You Can’t
  • Oregon Amends Its Comprehensive Privacy Statute
  • Wisconsin Supreme Court’s Liberal Majority Strikes Down 176-Year-Old Abortion Ban

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.