The US Government Just Doxxed The Biggest Cybercriminal...
Summary
TLDRThe FBI and international law enforcement agencies have taken down one of the world's most notorious cybercriminals, Dimitri Yovich Kosev, who is believed to be the mastermind behind the LockBit ransomware. The operation, dubbed 'Kronos,' involved the UK, US, and Australia, and has led to Kosev being charged with multiple counts, including violations of the Computer Fraud and Abuse Act. The LockBit ransomware has caused billions in damages and targeted over 2,000 victims, demanding over $100 million in ransom payments. The National Crime Agency of the UK has also taken control of the group's blog, and the US Department of State has offered a $10 million reward for information leading to Kosev's arrest. The case highlights the severe consequences cybercriminals face as law enforcement ramps up efforts to combat digital threats, with the potential for new groups to emerge in the power vacuum left by the dismantled ones.
Takeaways
- đŁ The FBI and international partners have taken down a major cybercriminal, comparing the event's significance to the takedown of Bin Laden for internet users.
- đ The National Crime Agency of the UK made an official announcement, building anticipation for the unveiling of a key figure in cybercrime.
- đ Dimitri Yovich Kosev, identified as a key administrator and developer of the LockBit ransomware, has been named and indicted.
- đš LockBit ransomware has caused significant harm, targeting over 2,000 victims and extorting more than $100 million in ransom payments.
- đ» The concept of ransomware involves encrypting a victim's files and demanding payment for their release, which can be particularly devastating for large organizations.
- đ„ The impact of ransomware on critical infrastructure like hospitals is severe, potentially putting lives at risk and causing major disruptions.
- đ° The US government, through the Department of State, has offered a reward of up to $10 million for information leading to the arrest of Dimitri Kosev.
- đ A special website, no-more-ransom.org, provides decryptors to help victims recover from ransomware attacks without paying the ransom.
- đ Kosev has been added to the Specially Designated Nationals (SDN) list, severely limiting his travel freedom.
- đ€ There is speculation that the individual named by the FBI might not be the true mastermind behind LockBit, with some suggesting the FBI could be mistaken.
- đ„ The takedown of significant cybercriminal figures or groups often leads to a power vacuum, where new groups emerge to take their place.
Q & A
What significant event did the FBI recently accomplish in the realm of cybercrime?
-The FBI recently took down and named one of the biggest cybercriminals in the world, an event likened to the bin Laden takedown for internet security experts.
Which government agency made an official announcement regarding the cybercriminal takedown?
-The National Crime Agency of the United Kingdom made the official announcement.
What was the nature of the announcement made by the UK's National Crime Agency?
-The announcement was about the unmasking and sanctioning of a leader of a harmful cybercrime group by the UK, US, and Australia, following an international destruction campaign named #Kronos.
Who was identified as the head administrator of the harmful cybercrime group?
-Dimitri Yovich Kosev was identified as the head administrator and main figure behind the cybercrime group.
What is Locky ransomware, and how does it operate?
-Locky ransomware is a malicious software that encrypts files on a victim's computer. The criminals behind it demand payment in exchange for the decryption key needed to restore access to the files.
What are the implications of a ransomware attack on large organizations like hospitals?
-A ransomware attack on a large organization like a hospital can be extremely dangerous, as it can disrupt critical services and potentially put lives at risk if systems cannot be quickly restored.
How did the US Justice Department and UK law enforcement disrupt the Locky ransomware group?
-They disrupted the group by charging the alleged developer and administrator of the ransomware, alleging that he targeted over 2,000 victims and stole more than $100 million in ransom payments.
What is the significance of the individual being added to the SDN list?
-Being added to the Specially Designated Nationals (SDN) list severely restricts the individual's freedom to travel internationally, as they are often limited to visiting countries that do not respect the SDN list.
What steps are taken by the authorities to assist victims of ransomware attacks?
-Victims can fill out a form to get access to decryptors available at websites like nomoreransome.com, which can help restore encrypted files without paying the ransom.
What was the reward offered by the Department of State for information leading to Dimitri Kosev?
-The Department of State offered up to $10 million for information leading to Dimitri Kosev for violations including the Computer Fraud and Abuse Act.
How did the authorities publicize their actions against the cybercriminal?
-The authorities publicized their actions by taking over the cybercriminal's blog, posting official notices, and setting countdown timers to their leaks, making it clear that law enforcement had seized control.
What was the reaction of the cybercriminal group Locky to the authorities' actions?
-Locky claimed that the FBI was bluffing and that they had doxed the wrong individual, implying that the person named by the authorities was not the real mastermind behind the ransomware operations.
Outlines
đ° Major Cybercriminal Takedown Announced
The video discusses the recent announcement by the FBI and UK's National Crime Agency about the takedown of a major cybercriminal. The individual, Dimitriyovich Kosev, is accused of being the head administrator and developer of the LockBit ransomware group. The authorities have unmasked and sanctioned Kosev, who has targeted over 2,000 victims and stolen over $100 million in ransom payments. The video provides a detailed overview of the case, the ransomware's impact on critical infrastructure like hospitals, and the government's efforts to combat such cybercrime.
đž $10 Million Bounty and Indictment Details
This paragraph delves into the specifics of the charges against Dimitriyovich Kosev and the $10 million bounty offered by the US Department of State for information leading to his arrest. Kosev has been indicted on 26 counts, including violations of the Computer Fraud and Abuse Act. The video also discusses the impact of the indictment on the LockBit group's operations and the potential for other ransomware groups to emerge in its place. The speaker speculates on the accuracy of the government's identification of Kosev and the possibility of the real culprit still being at large.
đ Decryptors and Future of Ransomware Groups
The final paragraph talks about the resources available to victims of ransomware attacks, such as the No More Ransom website where decryptors can be downloaded. The video also touches on Kosev being added to the Specially Designated Nationals (SDN) list, which severely limits his travel. The speaker explores the possibility of the LockBit group disbanding and another group taking its place to continue ransomware operations. The video concludes with a call to action for viewers to like, comment, and subscribe for more content on this topic.
Mindmap
Keywords
đĄCybercriminal
đĄRansomware
đĄNCA (National Crime Agency)
đĄDimitri Yovich Kosev
đĄLocky Ransomware
đĄDecryptors
đĄSpecially Designated Nationals (SDN) List
đĄDeep Web
đĄBitcoin Wallet Address
đĄBounty
đĄVX Underground
Highlights
The FBI and international partners have taken down one of the world's most notorious cybercriminals, comparing the event to the bin Laden takedown for the internet.
The National Crime Agency of the UK made an official announcement, teasing an imminent reveal concerning a cybercrime group leader.
A 24-hour countdown was set by the UK government, building anticipation similar to a major video game trailer release.
The UK and US, along with Australia, unmasked and sanctioned a leader of a harmful cybercrime group following an international destruction campaign named #Kronos.
Dimitri Yovich Kosev was identified as the head administrator and producer of a dangerous malware, with a video revealing his image.
The US Justice Department charged Kosev, a Russian national, with developing and operating LockBit ransomware, causing significant damage since September 2019.
LockBit ransomware encrypts files on a victim's computer, demanding payment for decryption, which can be particularly devastating for large organizations.
The ransomware attacks on critical infrastructure like hospitals represent a serious threat, potentially putting lives at risk.
The FBI and partners disrupted the LockBit ransomware group, charging the alleged developer who has targeted over 2,000 victims and stolen more than $100 million in ransom payments.
A $10 million bounty was offered by the US Department of State for information leading to Dimitri Kosev, highlighting the severity of his alleged crimes.
NoMoreRansom website was mentioned, offering decryptors to help victims of various ransomwares recover their files without paying.
Kosev was added to the Specially Designated Nationals (SDN) list, severely limiting his travel freedom.
The individual's iCloud email and Bitcoin wallet address were discovered, with the wallet showing significant transactions.
VX Underground reported that the FBI might have the wrong individual, as claimed by the LockBit group, suggesting that the real perpetrator remains at large.
The speaker predicts that even if the LockBit group disbands, another group will likely emerge to fill the power vacuum in the cybercrime ecosystem.
The government's unprecedented move to publicly 'dock' an individual highlights the seriousness with which they are taking cybercrime.
Transcripts
hello guys and gals me
mudahar the FBI just took down and named
and docked to one of the biggest cyber
criminals in the
world today today is like the the the
bin Laden takedown for the internet
nerds okay ladies and gentlemen it's a
wild day today I want to just start off
with a little video I want to start off
with something that is a bit surreal
almost Black Mirror is if you want to
talk about it okay now this is a post by
the National Crime agency of the United
Kingdom okay you can tell they are a
government verified Branch with that
little gray check mark in the
top so here they said official
announcement in 24 hours watch the space
now see this isn't like a Apple keynote
this isn't like a Kendrick versus Drake
beef track Throwdown where they're like
check out our SoundCloud boys we're
dropping some spicy pedo allegations
today crazy stuff no this is the
government willing to leak out and docks
an individual telling everyone to wait
24 hours like they're releasing the next
Grand Theft Auto 6 trailer so
immediately when I saw this I'm like boy
I cannot imagine that we live in a world
where where the government is prepping
and hyping me up for a little bit of a
docks now I'm glad to say that the
United Kingdom did not back down from
their announcement here ladies and
gentlemen they did in fact leak out the
actual ad over here so for instance this
is the post that came out 24 hours later
and why I waited actually got all my
stuff assembled to film this a leader of
what was once the most harmful cyber
crime group has been unmasked and
sanctioned by the UK us and Australia
following an NCA Le International
destrution campaign # Kronos and then
they added the FBI and [Â __Â ] europ
pole dude so of course I'm not joking
with you here's the video right now they
actually have a mosaic effect and yeah
boy that's her guy that's him Dimitri
yovich kosev which is basically
apparently they they're fingering as the
head administrator the [Â __Â ] producer
of this actual scary piece of malware
now of course he looks like you're a
traditional LinkedIn developer for any
crypto project you got the airpod to the
side you got him standing up looking all
intimidating this is vital in the
digital Space Universe
okay whereas influencer vital is out
there like apparently beating up
pedophiles and Flash banging them in
reality we've got digital vitality
digital digital
vital run running running goddamn
ransomware groups now obviously ladies
and gentlemen this is some pretty
serious stuff so I shouldn't really be
laughing okay now according to the
federal bureau they charged him a
Russian national with developing and
operating lock bit ransomware so again
the US justice department unsealed
charges against a Russian for his
alleged role as the Creator developer
and admin of the lock bit ransomware
group from its Inception in September
2019 to the present So for anybody that
doesn't know lock bit ransomware uh we
did virus investigations and I covered
this virus in the past where it was
basically ransomware and ransomware once
you've seen it once isn't really super
terribly exciting the concept is you
download a piece of their sample you run
it on your computer and eventually all
the files on your system will be taken
over and encrypted using a special key
that is generated and sent off to lock
bit now lock bit who possesses this key
basically tells you pay us a certain
amount of money and we'll send you a
decryption software that will unencrypt
all of the software and files on your
system so you can use your computer
again now if you get hit with ransomware
uh it's probably not the end of the
world for you okay you can reset things
maybe you'll have some backups but for a
big company and the larger and larger
your companies become the more tough it
becomes to Simply restore from a backup
okay let's say you're running a bank a
hospital one of the largest casino in
the world okay if you get hit with
ransomware it's a it's it's a massive
headache of figuring out how you got hit
where you got hit do you even have the
backups or or and whatnot to come back
to a reasonable State it's a lot of
headaches okay now it gets almost
dangerous evil and downright diabolical
when you're attacking hospitals for
instance right now imagine attacking a
hospital you know they get hit with
ransomware something critical gets you
know sort of stopped and if they can't
afford to pay a ransom or they can't
afford to give the money away especially
when there are people on the on the on
the verge of life and death that becomes
a serious issue that cannot be scoffed
at okay so that's why the world
governments get really mad about this
it's not just what they're doing to big
companies it's the fact that they attack
government infrastructures schools and
hospitals especially hospitals belonging
to sick children so when the FBI here
said earlier this year the justice
department and our UK law enforcement
partners disrupted lock bit a ransomware
group responsible for attacks on victims
across the US and the world today
they're going a step further in charging
the individual who they allege again
this isn't confirmed they allege
developed and administered this
malicious cyber scheme who has targeted
over 2,000 victims and stolen more than
$100 million Us in ransomware payments
and they will continue to work closely
to make sure this stuff is taken care of
so again going in further over here they
name Dimitri yich corev also known as
the screen name lock bit Su and of
course Putin crab of voron Von Russia
again my Russian isn't exactly the best
okay so feel free to laugh at it and of
course this is a 26 page 26 count
indictment by the grand jury in the
district of New Jersey so yeah this is
some serious serious [Â __Â ] and what they
allege is they launched one of the most
prolific ransomware variants causing
billions of dollars in losses and Rec
havoc on critical infrastructures
including schools and hospitals so yeah
like I said really dangerous [Â __Â ] when
you start messing around with groups
like this when you start messing around
with critical stuff like this the
government is going to come on you as
hard as they've ever come on for any
actual criminal out there okay you are
about just as evil to them as some Isis
terrorist or some Mexican drug cartel
operative or really any highlevel
criminal so when you look into like the
reporting form over here too even lock
bit has special form so now that they've
gotten access they can assist people
that have been hit with various versions
so if you are hit with this [Â __Â ] fill
out this form you probably already know
if you have been hit in a serious
capacity and you've done it but that's
generally the idea here so again to give
you an idea of what websites and what
groups look like when they've been
infected and taken down when their
websites or their blogs get hijacked it
looks a lot like this the site is now
under control of law enforcement the
site is now under control of the
National Crime agency of the UK so this
is what it looked like when people tried
accessing lock bits blogs they grabbed
access to the servers Keys whatever and
basically threw this [Â __Â ] up there to
basically look and make it appear and
make it well known that they took down a
Blog and a serious group now because
this is crypto stuff because this is
Deep Web stuff because this is you know
groups fighting for each other websites
and groups and various [Â __Â ] will pop up
over over time but let's look at the
actual blog that has been hijacked by
the federal government so again this is
a deep web link page all right and again
this is the onion link over here that I
may or may not blur depending on how
YouTube's to goes in regards to I guess
popularizing this kind of content but to
give you an idea of how to find this
kind of [Â __Â ] all right one of the ways
that we end up finding it is through
various group websites so for instance
all these links you see on the left are
groups that are again ransomware groups
uh you know cyber cyber warfare groups
you can imagine right there's a whole
bunch of them right here and again they
all have different blogs and they all
have onion links leading two set blogs
so what we effectively do over here is
we highlight a link or at least the most
available one and we just get access to
it so these are onion links and they
fluctuate all the time as you know if
you've ever watched me cover the Deep
Web on my channel so this is lock bit
seized address and of course if you're
looking at all of these Pages you can
see that this is the government
basically putting down countdown
timers to all of their leaks so for
instance they will close the website in
a matter of days so this is if you
wanted to look at this website with your
own eyeballs this is like the last
chance okay after this the government
will take this down not to say that a
lock bit group that still exists a cell
won't have another website open but this
is your last chance to catch up on some
cyber warfare history so in this
situation they've given their press
releases which we've looked at the FBI
one we looked a bit at the UK one but
they gave the $10 million question right
the Bounty out here right and if you
look into the Bounty you can see that
the $10 million question which it's
interesting how they're releasing this
at 1337 whatever BST is I I feel like
the feds now are run by actual meme
Lords like they're run by actual memers
for channers that have grown up to work
with the actual federal bureau it's
insane so here it is lock bits up so the
US government literally unsealed this
name now there is a chance in my opinion
that this name could be wrong right but
I think the chance for that is highly
unlikely because I don't think the US
government is willing to leak out wrong
information for the sale for for the
sake of being I think they would put
themselves in a serious legal problem
and they would really be ruining their
reputation if they turned out to be
doxing the wrong individual but anyways
the Department of State through their
award program offered up to $10 million
for information about this [Â __Â ] dude
right here so that is a $10 million
award leading to Dimitri kosev for
violations including the Computer Fraud
and Abuse Act okay now if you've been
hit with this guy's ransomware they
direct you to a website known as no more
Ransom where you can actually download
decryptors right now to help you out
with whatever you've gotten so if you've
been ever hit with any bit any any of
these ransomwares you can basically
download these decryptors and take care
of yourself right over here it actually
would be fun to show you how ransomware
gets ransomed and then ransomware gets
decrypted it would be fun to discuss
this with you so let me know what you
want we can look at the mafia Weare 666
decryptor if you want you know as a meme
but of course ladies and gentlemen to go
further into it uh obviously the guy was
added to the sdn list which is the
specially designated Nationals once
you've been added to this list your
freedom of travel anywhere in the world
is so limited to the point where you I
think you can only visit like four or
five countries I think it's like China
Russia Iran North and that's pretty much
what it comes down to you know countries
that don't necessarily respect the sdn
list because they're large enough
countries on their own so kosev gets
added to this list and they find out
that his iCloud email kev1 icloud.com
that could be a burner but I don't know
sometimes dudes will just have MacBooks
or anything sitting around like full
addresses not thinking that they can
actually get screwed at some point and
of course what they've actually got is
his Bitcoin wallet address so so I
opened the Bitcoin wallet address up too
and it's funny because you look through
this address and the only volume it's
ever gotten well total received and sent
was around $4
47,7 33 so obviously not the total
amount of cash that this person has ever
had uh just because if you look through
their original statements back in like
February the guy literally says that
they work for like hundreds of millions
of dollars so clearly they've got a lot
of money that they've made through this
where that money is I'm sure the federal
bureau and every organization is going
to try to find and track down especially
if it's in crypto which makes it a
little bit easier for them too depending
on how it's laundered or whatnot or
moved around but again beyond all of it
one of the things that I wanted to also
showcase was VX underground great friend
of the channel ended up actually talking
or getting you know information from
this group lock bit and apparently they
said that the FBI they're bluffing all
right this isn't the real individual in
fact if somebody else you know that
they've doxed they will get [Â __Â ] for
their sins implying that basically the
wrong person is arrested the FBI found
the wrong person now whether lock bit is
right and the FBI is just fingering some
random guy for no reason that I think is
a pretty massive claim so for this
moment in time I think that pretty much
most of the policing agencies have
basically done what they can to find
these individuals and for the most part
it seems like this lock bit group May
potentially die off but that just means
that a power vacuum gets made and
another group takes the reins look at
the end of the day money is money all
right if there's hundreds of millions of
dollars to be made through criminal
activities what I have learned through
history alone is that another group will
just come out of the ashes and basically
run the gamut themselves and that's
pretty much where I think this situation
is unfortunately added down to so yeah
this guy uh came out of the Woodworks uh
the FBI you know basically kept hunting
them down they put on a bounty and uh
it's funny to see that the government
has straight up doxed an individual like
they actually hyped up a dock I cannot
believe that I actually have to see
things play out that way but yeah that's
pretty much what it comes down to ladies
and gentlemen this is me mudahar and if
you like what you saw please like
comment and subscribe dislike it if you
dislike it I am out
5.0 / 5 (0 votes)
New details emerge in Diddy sexual assault investigation
Atlanta Police Violently Arrest Emory Students & Faculty to Clear Gaza Solidarity Encampment
NYC Protest Beginsđ„Truckers Block New York! Gov Kathy Hochul Deploys National Guard: LATEST UPDATE!
Two police officers were shot and killed near Syracuse, New York
Nightly News Full Broadcast - April 29
ABC World News Tonight Full Broadcast - April 28, 2024