A 26-year-old Russian national has been sentenced to 81 months in federal prison for serving as an initial access broker for major cybercrime organizations, including the Yanluowang ransomware group. His activities facilitated dozens of network breaches across the United States, resulting in over 9 million dollars in actual financial damages and significantly higher intended losses.

Aleksei Olegovich Volkov was sentenced following his extradition from Italy and a subsequent guilty plea for his central role in a series of damaging cyberattacks against American companies. Operating as a specialized facilitator, Volkov focused on gaining unauthorized entry into secure corporate networks by exploiting various technical vulnerabilities. Once he secured a foothold within these systems, he sold that access to other criminal entities who utilized it to deploy malicious software.

These secondary criminal groups used the access provided by Volkov to install ransomware, which effectively locked down victim data and paralyzed business operations. By encrypting critical files, the attackers were able to demand massive cryptocurrency ransoms from the targeted organizations in exchange for a decryption key. These demands often reached into the tens of millions of dollars, with the added threat that stolen private data would be leaked publicly if the victims refused to pay.

Volkov’s business model was directly tied to the success of these extortions, as he received a designated portion of the illicit proceeds whenever a victim chose to pay the ransom. His involvement went beyond simple hacking, encompassing a range of criminal activities including trafficking in sensitive access information and identity theft. Federal prosecutors highlighted that his actions were a foundational component of a larger conspiracy designed to launder money and defraud numerous victims.

As part of his sentencing, the court ordered Volkov to pay over 9.1 million dollars in restitution to cover the verified losses incurred by the affected organizations. He is also required to forfeit the specialized digital tools and equipment he used to conduct his illegal operations. This financial penalty accompanies his nearly seven-year prison term, marking a significant conclusion to a high-profile international cybercrime investigation.

The conviction serves as a message regarding the legal consequences for those who provide the infrastructure for ransomware attacks, even if they are not the ones directly deploying the final malware. By targeting the access brokers who make these breaches possible, law enforcement aims to disrupt the supply chain of the global cybercrime economy. Volkov remains in federal custody as he begins serving his sentence for the multiple counts of computer fraud and money laundering conspiracy.

Source: https://www.justice.gov/opa/pr/russian-citizen-sentenced-prison-hacking-us-companies-and-enabling-major-cybercrime-groups