The United States has levelled charges against two Russian nationals accused of deploying the Lockbit ransomware against numerous companies worldwide. Accompanied by arrests made in Poland and Ukraine, the operation has culminated in a resounding disruption of Lockbit’s illicit activities, which have plagued over 2,000 victims and amassed over $120 million in ransom payments.
During a joint press conference in London, representatives from the NCA, U.S. Department of Justice, FBI, and Europol announced the successful dismantling of Lockbit’s infrastructure. Graeme Biggar, Director General of the NCA, proclaimed, “We have hacked the hackers. We have taken control of their infrastructure, seized their source code and obtained keys that will help victims decrypt their systems.”
Dubbed “Operation Cronos,” this collaborative effort marks a pivotal moment in the fight against cybercrime. “As of today, Lockbit is effectively redundant,” stated Biggar. “Lockbit has been locked out.”
Unsealed in New Jersey, the indictment names Artur Sungatov and Ivan Kondratyev as key operatives behind Lockbit’s nefarious activities. Both individuals, sanctioned by the U.S. Treasury, are accused of orchestrating ransomware attacks across various sectors, including manufacturing, logistics, and insurance.
Lockbit’s reign of digital terror has inflicted billions in damages, leaving businesses crippled by ransom payments and operational disruptions. However, Operation Cronos has dealt a severe blow to the gang, seizing 34 servers, freezing 200 cryptocurrency accounts, and dismantling thousands of online platforms for launching attacks.
In a bold move, authorities transformed Lockbit’s leak website into a repository of incriminating evidence against the criminal syndicate. Countdown clocks now threaten to unveil sanctions and the identity of Lockbit’s ringleader, turning the tables on the once-untouchable cybercriminals.
