Law enforcement agencies have identified Russian national Aleksandr Viktorovich Ryzhenkov as a key member of the notorious Evil Corp cybercrime group and a LockBit ransomware affiliate.<\/p>\n
Ryzhenkov, also known by his alias \u201cBeverley,\u201d has been linked to over 60 LockBit ransomware<\/a> builds and is believed to have sought to extort at least $100 million from victims in ransom demands.<\/p>\n According to Authorities, Ryzhenkov was unmasked through data obtained during Operation Cronos, a joint investigation with international partners.<\/p>\n Analyse Any Suspicious Links Using ANY.RUN\u2019s New Safe Browsing Tool:\u00a0Try for Free<\/a><\/strong><\/p>\n Authorities revealed<\/a> that Ryzhenkov used the affiliate name \u201cBeverley\u201d and was associated with the alias \u201cmx1r\u201d and the threat group UNC2165, an evolution of Evil Corp-affiliated actors.<\/p>\n The United Kingdom\u2019s Foreign, Commonwealth, and Development Office (FCDO), the United States Office of Foreign Assets Control (OFAC), and the Australian Department of Foreign Affairs and Trade (DFAT) have also sanctioned Ryzhenkov for his involvement in Evil Corp.<\/p>\n In a separate development, the United States Department of Justice unsealed a 2023 indictment charging Ryzhenkov with using the BitPaymer ransomware variant to attack numerous victims in Texas and throughout the United States.<\/p>\n The indictment alleges that Ryzhenkov and his conspirators gained unauthorized access to victims\u2019 computer networks, deployed the BitPaymer ransomware, and demanded millions of dollars in ransom.<\/p>\n \u201cThe Justice Department is using all the tools at its disposal to attack the ransomware threat from every angle,\u201d said Deputy Attorney General Lisa Monaco. <\/p>\n \u201cToday\u2019s charges against Ryzhenkov detail how he and his conspirators stole the sensitive data of innocent Americans and then demanded ransom. With law enforcement partners here and around the world, we will continue to put victims first and show these criminals that, in the end, they will be the ones paying for their crimes.\u201d<\/p>\n Victims of ransomware attacks are encouraged to contact their local FBI field office. For additional information on ransomware, please visit StopRansomware.gov<\/a>.<\/p>\n Free Webinar on How to Protect Small Businesses Against Advanced Cyberthreats\u00a0-> Free Webinar<\/strong><\/a><\/p>\n The post Authorities Unmasked LockBit Affiliate Evil Corp Key Member<\/a> appeared first on Cyber Security News<\/a>.<\/p>\n<\/div>\n![\"\"](\"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEiRzmslS_a6uw8ET6zL5nxH3a3dBWWCAE7Evrk0ApnNYTRLWst84AuCa91mqoiS91JMaTuFNB2FrLwWWAEwB4cHXqSRk7YCTYDZPDWZliEXePXj4r7T-KF74zifoAqnQI3oO2yH2dAl_KsR53_4wnjlHPRhxnLM4mLSu_qyQ6rD8op_ugsNyty2Ws5jHzeg\/s16000\/Wanted%2520by%2520FBI%2520%281%29.webp?ssl=1\")
<\/figure>\n<\/div>\n![\"\"](\"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEi73VftNN-_PGLumM7f0bRXfFYaRfFkcTLdFwiZQ5tMF5T3V49HcHt0PEwQt5lmegRvO2j23cr5ZF4cpRvhLTxFF9HMEteKZLyx9LaQKgwM1A8fdl5cLdsgspjzG4W3PNKuZ8KAUf_08dTrK21UpjoU4W3v8tz94fVewYFRq51-Ws3RZvV4F_cxuFhtpmWl\/s16000\/Evil%2520Group%2520members%2520%26%2520Affiliates.webp?ssl=1\")