Hackers News Hackers News
  • CyberSecurity News
  • Threats
  • Attacks
  • Vulnerabilities
  • Breaches
  • Comparisons

Social Media

Hackers News Hackers News
  • CyberSecurity News
  • Threats
  • Attacks
  • Vulnerabilities
  • Breaches
  • Comparisons
Search the Site
Popular Searches:
technology Amazon AI
Recent Posts
Critical Cursor RCE: CVE-2024-XXXXX lets Git repos auto-execute code
July 15, 2026
Gemini CLI Vulnerability Lets Attackers Build Botnets in Minutes
July 15, 2026
US Charges Two Bulletproof Hosting Firms for Aiding Cybercrime
July 15, 2026
Home/CyberSecurity News/US Charges Two Bulletproof Hosting Firms for Aiding Cybercrime
CyberSecurity News

US Charges Two Bulletproof Hosting Firms for Aiding Cybercrime

Key Takeaways The U.S. Department of Justice has indicted three Russian nationals and two Russia-based “bulletproof hosting” companies. These entities are accused of enabling cybercrimes...

Marcus Rodriguez
Marcus Rodriguez
July 15, 2026 3 Min Read
5 0

Key Takeaways

  • The U.S. Department of Justice has indicted three Russian nationals and two Russia-based “bulletproof hosting” companies.
  • These entities are accused of enabling cybercrimes that caused over $62 million in losses to 42 organizations across 21 U.S. states.
  • The charges include conspiracy to commit computer fraud, wire fraud, and money laundering.
  • The State Department is offering a $10 million reward for information connecting the defendants to foreign governments, following sanctions by the U.S. Treasury and international allies.

The U.S. Department of Justice has unsealed an indictment in the Northern District of Ohio, bringing charges against three Russian individuals and two Russia-based “bulletproof hosting” firms. These entities are alleged to have facilitated extensive cybercriminal activities, resulting in tens of millions of dollars in losses for victims throughout the United States.

Table Of Content

  • Key Takeaways
  • U.S. Targets Bulletproof Hosting Operations
  • International Cooperation and Sanctions
  • What You Should Do

The indictment, initially filed in December 2024, outlines serious charges, including conspiracy to commit and aid computer fraud, wire fraud, and money laundering. The individuals and companies named are:

  • Alexander Alexandrovich Volosovik (43), residing in St. Petersburg, Russia.
  • Kirill Andreevich Zatolokin (34), residing in St. Petersburg, Russia.
  • Yulia Vladimirovna Pankova (29), residing in St. Petersburg, Russia.
  • Medialand LLC, based in St. Petersburg, Russia.
  • ML.Cloud LLC, based in St. Petersburg, Russia.

U.S. Targets Bulletproof Hosting Operations

Prosecutors contend that Medialand, owned by Volosovik, and ML.Cloud, which Pankova owned during the investigative period, supplied specialized server infrastructure designed to evade law enforcement intervention. Volosovik reportedly promoted these services on illicit online forums, advertising resilient setups across various global jurisdictions.

Co-conspirators reportedly utilized these robust hosting configurations to deploy diverse malware strains, conduct cryptocurrency extortion schemes, host illegal online marketplaces, and execute automated brute-force attacks. The infrastructure footprint observed in these operations bears similarities to those previously associated with Onyx ransomware activities.

Further details on the criminal infrastructure, operational tracking, and specific charging documents are available in the official DOJ release.

Court documents indicate that the cybercriminal operations impacted 42 distinct organizations across 21 U.S. states. The targets spanned critical public sectors, including healthcare providers, financial institutions, educational establishments, media organizations, and government systems.

International Cooperation and Sanctions

In conjunction with the criminal charges, the U.S. State Department’s Rewards for Justice program announced a reward of up to $10 million for information linking the indicted individuals or their companies to foreign government entities. This action follows a series of coordinated restrictions implemented in November 2025 by the U.S. Treasury Department’s Office of Foreign Assets Control (OFAC), which fully sanctioned all three individuals, Medialand’s subsidiaries (Media Land Technology and Data Center Kirishi), and its sister company ML.Cloud.

The United Kingdom’s Foreign Commonwealth and Development Office fully endorsed the sanctions package, while Australia’s Department of Foreign Affairs and Trade enacted corresponding partial measures.

The multi-agency investigation was led by the FBI Cleveland Division, with operational support from CISA, OFAC, and international law enforcement partners, including the Dutch National Police, the UK National Crime Agency, and the Australian Federal Police. This initiative falls under Operation Riptide, the FBI’s broader campaign against the cybercrime economy, launched in response to a 26% year-over-year surge in domestic cyber losses, now totaling $20 billion annually.

What You Should Do

  • Continuously audit inbound network traffic for suspicious activity and anomalies.
  • Implement robust intrusion detection and prevention systems to identify and block automated access threats.
  • Monitor systems for indicators of compromise (IoCs) that resemble infrastructure used by malware like gitpaste-12 or other known cybercriminal operations.
  • Ensure all network devices and servers are regularly patched and configured with strong security controls.
  • Conduct regular security awareness training for employees, especially regarding phishing and social engineering tactics.

Disclaimer: HackersRadar reports on cybersecurity threats and incidents for informational and awareness purposes only. We do not engage in hacking activities, data exfiltration, or the hosting or distribution of stolen or leaked information. All content is based on publicly available sources.

Tags:

MalwareransomwareThreat

Share Article

Marcus Rodriguez

Marcus Rodriguez

Marcus is a security researcher and investigative journalist with expertise in vulnerability research, bug bounties, and cloud security. Since 2017, Marcus has been breaking stories on critical vulnerabilities affecting major platforms. His investigative work has led to the disclosure of numerous security flaws and improved defenses across the industry. Marcus is an active participant in bug bounty programs and has been recognized for responsible disclosure practices. He holds multiple security certifications and regularly speaks at industry events.

Previous Post

Critical Dell PowerProtect flaws let attackers gain full system access

Next Post

Gemini CLI Vulnerability Lets Attackers Build Botnets in Minutes

No Comment! Be the first one.

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Popular Posts
FaceTime Call Impersonation Fraud Hijacks Bank Accounts
July 15, 2026
Critical Windows RDP Bugs Expose Sensitive Data, Patch Now
July 15, 2026
LabubaRAT Malware Impersonates NVIDIA to Hijack Windows Systems
July 15, 2026
Top Authors
Marcus Rodriguez
Marcus Rodriguez
Emy Elsamnoudy
Emy Elsamnoudy
Jennifer sherman
Jennifer sherman
Let's Connect
156k
2.25m
285k

Related Posts

Jennifer sherman
By Jennifer sherman
Threats

GlassWorm Attacks macOS via Malicious VS Code…

January 1, 2026
Emy Elsamnoudy
By Emy Elsamnoudy
Attacks

ClickFix Attack Hides Malicious Code via Stegan Security

January 1, 2026
Emy Elsamnoudy
By Emy Elsamnoudy
Breaches

Conti Ransomware Gang Leaders & Infrastructure Exposed

January 1, 2026
Emy Elsamnoudy
By Emy Elsamnoudy
CyberSecurity News

Top 10 High-Risk Vulnerabilities Of 2025 that Exploited in the Wild

January 1, 2026
Hackers News Hackers News
  • [email protected]

Quick Links

  • Contact Us
  • Privacy Policy
  • Terms of service

Categories

Attacks
Breaches
Comparisons
CyberSecurity News
Threats
Vulnerabilities

Let's keep in touch

receive fresh updates and breaking cyber news every day and week!

All Rights Reserved by HackersRadar ©2026

Follow Us