Jonathan Greig reports:
A popular Russian bulletproof hosting service provider named Media Land was sanctioned by the U.S. Treasury and international partners on Wednesday for its alleged support of ransomware gangs and other cybercriminal operations.
The St. Petersburg-based company provides hackers with access to IP addresses, servers and domains that are used to spread malware, form botnet armies and carry out ransomware attacks.
The U.S., U.K. and Australia accused Media Land of providing services to online criminal marketplaces as well as ransomware groups like Lockbit, BlackSuit and Play. The company’s services were also used in several distributed denial-of-service (DDOS) attacks on U.S. critical infrastructure entities, the Treasury said.
The three countries also sanctioned Data Center Kirishi and ML Cloud — sister companies of Media Land that provide other technical infrastructure to ransomware gangs.
Read more at The Record.