- Category
- Latest news
US Sanctions Russian Cybercrime Group Aeza for Hosting Ransomware and Global Attacks
- Authors
![Photo of Dariia Mykhailenko]( "Photo of Dariia Mykhailenko")
The United States has imposed sanctions on the Russian cybercrime group Aeza Group and its associated global network, the US Department of the Treasury’s Office of Foreign Assets Control (OFAC) announced on June 1.
OFAC designated Aeza Group for its role in supporting cybercriminal operations targeting victims in the United States and worldwide. The sanctions also include two affiliated companies and four individuals who hold leadership positions within the organization.
In coordination with the United Kingdom’s National Crime Agency, OFAC also designated a front company linked to Aeza Group that operates in the UK.
-9c3cee19ded0f41029d2ca3476513550.jpg)
According to OFAC, Aeza Group provided "bulletproof hosting" (BPH) services—specialized servers and infrastructure designed to shield cybercriminals such as ransomware operators, data thieves, and drug traffickers from detection and law enforcement intervention.
Officials stated that Aeza’s infrastructure was used by ransomware and malware groups, including operators of the Meduza and Lumma info-stealers, to launch attacks on the US defense industrial base, tech companies, and other global targets.
“Cybercriminals continue to rely heavily on BPH service providers like Aeza Group to facilitate disruptive ransomware attacks, steal US technology, and sell black-market drugs,” said Acting Under Secretary of the Treasury for Terrorism and Financial Intelligence Bradley T. Smith.
“Treasury, in close coordination with the UK and our other international partners, remains resolved to expose the critical nodes, infrastructure, and individuals that underpin this criminal ecosystem.”
-21b386752d1415ad7e0a7b5781b4993e.png)
As a result of these sanctions, all property and interests in property of the designated individuals and entities within the United States or under US jurisdiction are blocked and must be reported to OFAC. Entities owned 50% or more, directly or indirectly, by one or more blocked persons are also subject to sanctions.
Unless authorized by a license from OFAC, all transactions involving blocked persons are prohibited for US individuals and entities, including those transiting through the US.
Earlier, it was reported that Ukraine faces around 100,000 cyberattacks every month, according to Vice Prime Minister for Innovation and Minister of Digital Transformation Mykhailo Fedorov.
