{
	"id": "0d37a2f2-7710-40f1-be4b-640de1e62639",
	"created_at": "2026-04-06T00:17:34.44742Z",
	"updated_at": "2026-04-10T13:11:28.96938Z",
	"deleted_at": null,
	"sha1_hash": "8b3b2fb010e4827834556867894124a54e5dbadf",
	"title": "Ukrainian Hacker Linked to REvil Ransomware Attacks Extradited to United States",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 206318,
	"plain_text": "Ukrainian Hacker Linked to REvil Ransomware Attacks\r\nExtradited to United States\r\nBy The Hacker News\r\nPublished: 2022-03-10 · Archived: 2026-04-05 14:56:40 UTC\r\nYaroslav Vasinskyi, a Ukrainian national, linked to the Russia-based REvil ransomware group has been\r\nextradited to the U.S. to face charges for his role in carrying out the file-encrypting malware attacks against\r\nseveral companies, including Kaseya last July.\r\nThe 22-year-old had been previously arrested in Poland in October 2021, prompting the U.S. Justice Department\r\n(DoJ) to file charges of conspiracy to commit fraud and related activity in connection with computers, damage to\r\nprotected computers, and conspiracy to commit money laundering.\r\nRansomware is the digital equivalent of extortion wherein cybercrime actors encrypt victims' data and take it\r\nhostage in return for a monetary payment to recover the data, failing which the stolen information is published\r\nonline or sold to other third-parties.\r\nAccording to the DoJ, in addition to the headline-grabbing attacks on JBS and Kaseya, REvil is said to have\r\npropagated its infection to more than 175,000 computers, netting the group at least $200 million paid in virtual\r\nhttps://thehackernews.com/2022/03/ukrainian-hacker-linked-to-revil.html\r\nPage 1 of 2\n\ncurrency ransoms before it officially went dark late last year.\r\nVasinskyi, who was transported to the city of Dallas on March 3 pursuant to an extradition treaty between the U.S.\r\nand Poland, had his charges formally read in the Northern District of Texas. If convicted of all counts, Vasinskyi\r\nfaces a total prison term of 115 years.\r\nAccording to the indictment, the defendant is alleged to be responsible for deploying the Sodinokibi/REvil\r\nransomware via a supply chain attack that targeted as many as 1,500 customers of Kaseya across the globe and\r\ndemanding a bitcoin ransom in exchange for gaining back access to the locked files.\r\n\"Just eight months after committing his alleged ransomware attack on Kaseya from overseas, this defendant has\r\narrived in a Dallas courtroom to face justice,\" said Deputy Attorney General Lisa O. Monaco. \"When we are\r\nattacked, we will work with our partners here and abroad to go after cybercriminals, wherever they may be.\"\r\nFound this article interesting? Follow us on Google News, Twitter and LinkedIn to read more exclusive content\r\nwe post.\r\nSource: https://thehackernews.com/2022/03/ukrainian-hacker-linked-to-revil.html\r\nhttps://thehackernews.com/2022/03/ukrainian-hacker-linked-to-revil.html\r\nPage 2 of 2",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"Malpedia"
	],
	"origins": [
		"web"
	],
	"references": [
		"https://thehackernews.com/2022/03/ukrainian-hacker-linked-to-revil.html"
	],
	"report_names": [
		"ukrainian-hacker-linked-to-revil.html"
	],
	"threat_actors": [],
	"ts_created_at": 1775434654,
	"ts_updated_at": 1775826688,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/8b3b2fb010e4827834556867894124a54e5dbadf.pdf",
		"text": "https://archive.orkl.eu/8b3b2fb010e4827834556867894124a54e5dbadf.txt",
		"img": "https://archive.orkl.eu/8b3b2fb010e4827834556867894124a54e5dbadf.jpg"
	}
}