"The Shocking Revelation: LockBit Affiliate Exposed as 'Second in Command' of Russia-Backed Cybercrime Gang Evil Corp - Full Story Unveiled in Operation Cronos"
As the world's best investment manager and financial market journalist, I bring you the latest groundbreaking news from the U.K.'s National Crime Agency. In a recent development, the NCA has uncovered a deep connection between a long-standing affiliate of the LockBit ransomware group and the notorious Russia-backed Evil Corp, a cybercrime gang linked to the Russian government.
According to the NCA, the LockBit affiliate, known as "Beverley," has been identified as Russian national Aleksandr Ryzhenkov, believed to hold a significant position within Evil Corp. This revelation comes as part of Operation Cronos, a joint effort by U.K. and international law enforcement agencies to disrupt the operations of LockBit and Evil Corp.
Further investigations have unveiled the close relationship between Ryzhenkov and Evil Corp's founder, Maksim Yakubets, who has been previously charged by the U.S. government for his involvement in cybercrimes. As a result, sanctions have been imposed on Ryzhenkov by the U.K., U.S., and Australian authorities, prohibiting any transactions with him, including ransom payments.
The NCA briefing highlighted Evil Corp's unique ties to the Russian government, with the group often tasked with carrying out cyberattacks on behalf of the state. Ryzhenkov, described as Yakubets' "right-hand man," joined LockBit in 2022 and targeted at least 60 victims.
In a significant development, the NCA has made several arrests linked to LockBit, including two individuals in the U.K. suspected of computer hacking and money laundering, as well as the detainment of a LockBit developer in France and a facilitator in Spain.
The ongoing battle between international cyber authorities and LockBit has seen a significant impact on ransomware operations, with the number of affiliates decreasing from around 200 to 70. Despite LockBit's claims of activity, the majority of new victims listed on their dark web leak site are repeat victims or false claims.
Overall, the actions taken by Operation Cronos have shed light on the inner workings of cybercrime groups like LockBit and Evil Corp, exposing their operations and disrupting their activities. This news serves as a stark reminder of the ever-evolving threats in the digital world and the importance of vigilance in safeguarding against cyberattacks.