Ukrainian hacker Yaroslav Vasinskyi charged with ransomware attacks in the US has been extradited to the U.S., could face 115 years in prison, DOJ says

As you may recall, in July 2021, Kaseya was hit by the REvil ransomware attack. The hackers involved in the ransomware attack later demanded $70 million to restore the data they are holding for ransom from victims spread across at least 17 countries. Kaseya said at the time the ransomware attack affected one million systems worldwide.

Fast forward nine months later, The Department of Justice (DOJ) announced that one of the hackers involved in the hack has a Ukrainian man, Yaroslav Vasinskyi, has been arrested and extradited to the United States over the REvil ransomware.

In a statement, the DOJ said that Yaroslav Vasinskyi, 22, accessed the internal computer networks of several victim companies including Kaseya, and then deployed REvil ransomware to encrypt the data on their computers. Vasinskyi was arrested in Poland in October last year, and indicted by the US Department of Justice late last year along with his Russian friend Yevgeniy Polyanin, 28, who is still at large. Vasinskyi made a court appearance on Wednesday, the U.S. Justice Department said.

For now, Vasinskyi has been transported to Dallas by US law enforcement authorities where he arrived on March 3, 2022. He could face a very long sentence of 115 years in prison.

Vasinskyi is charged with conspiracy to commit fraud and related activity in connection with computers, damage to protected computers, and conspiracy to commit money laundering. If convicted of all counts, he faces a total penalty of 115 years in prison. A federal district court judge will determine any sentence after considering the U.S. Sentencing Guidelines and other statutory factors.

It all started on July 4 when most Americans were celebrating Independence Day, the notorious cybercrime gang known as REvil was having its own celebration — The group successfully attacked Kaseya, the IT firm that provides remote IT infrastructure management services for multiple customers. The REvil ransomware attack affected as many as 1,500 Kaseya customers, encrypting their data and forcing some to shut down for days, the Justice Department said.