[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fsozOxpiCsxbglb7cg_BU7Lx1hIDRHxu8CBV8lIuen00":3},{"article":4,"iocs":52},{"id":5,"title":6,"slug":7,"summary":8,"ai_summary":9,"brief":10,"full_text":11,"url":12,"image_url":13,"published_at":14,"ingested_at":15,"relevance_score":16,"entities":17,"category_id":29,"category":30,"article_tags":34},"4c48afd6-8781-4adf-8e4e-73983aaaca32","US Charges Russian Individuals and Firms for Running Cybercrime Services","us-charges-russian-individuals-and-firms-for-running-cybercrime-services-96b192","The suspects and their companies were previously sanctioned by the United States and its allies. The post US Charges Russian Individuals and Firms for Running Cybercrime Services appeared first on SecurityWeek.","The US Justice Department has indicted three Russian nationals and two companies, ML.Cloud and Media Land, for allegedly operating cybercrime services. These services provided bulletproof hosting used for phishing, DDoS attacks, ransomware, and hosting cybercrime marketplaces, impacting at least 42 entities across 21 US states and causing tens of millions of dollars in losses. The individuals and companies were previously sanctioned by the US and its allies, and the US is now offering a reward for information on the operators.","US indicts three Russian nationals and two companies for running cybercrime services.","The US Justice Department on Tuesday unsealed an indictment charging three Russian nationals and two companies for allegedly running cybercrime services. The individuals are Aleksandr Alexandrovich Volosovik, Kirill Andreevich Zatolokin, and Yulia Pankova, and the targeted companies are ML.Cloud and Media Land, whose infrastructure spanned countries such as China, the Netherlands, Finland, and even the United States. The three suspects are accused of running ML.Cloud and Media Land, which allegedly provided bulletproof hosting services to a wide range of threat actors, including profit-driven gangs and state-sponsored groups. [ Read: Synopsys Finds No Evidence of Data Breach Amid Bosch Hack Claims ] ML.Cloud and Media Land infrastructure was used for phishing, DDoS attacks, brute-force attacks, ransomware, and hosting cybercrime marketplaces and forums, according to the DOJ. Authorities said threat actors leveraged the two services to target at least 42 entities across 21 US states, overall causing tens of millions of dollars in losses.Advertisement. Scroll to continue reading. The indictment targeting Volosovik, Zatolokin, and Pankova was returned in December 2024, but it was only unsealed now. However, this is not the first time the names of the suspects and their companies have been made public. In late 2025, the United States and its allies announced sanctions against them, along with other individuals and companies tied to criminal activities. The US also announced on Tuesday that it’s offering a reward of up to $10 million and possible relocation for information on the ML.Cloud and Media Land operators. Reward for ML.Cloud and Media Land operators While it’s not common for Russian bulletproof hosting administrators to be sentenced to prison in the United States, it’s not unheard of either. Related: Admins of Bulletproof Hosting Service Used by Russian Hackers Arrested in Netherlands Related: Russian Cybercrime Network Targeted for Sanctions Across US, UK and Australia Related: Third US Security Expert Sentenced to Prison for Helping Ransomware Gang Written By Eduard Kovacs Eduard Kovacs (@EduardKovacs) is senior managing editor at SecurityWeek. He worked as a high school IT teacher before starting a career in journalism in 2011. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering. Daily Briefing Newsletter Subscribe to the SecurityWeek Email Briefing for the latest cybersecurity threats, trends, and expert insights. More from Eduard Kovacs 7 Severe Vulnerabilities Patched in VMware Avi Load BalancerUnpatched Claude for Chrome Flaw Lets Extensions Read Gmail, CalendarPentagon Suspends CMMC Phase 2 as It Rethinks Contractor Cybersecurity RulesCybersecurity M&A Roundup: 37 Deals Announced in June 2026Centers Laboratory Data Breach Affects 540,000 IndividualsThird US Security Expert Sentenced to Prison for Helping Ransomware GangChina, India-Linked Hackers Both Targeted Same Pakistani Police Force‘HalluSquatting’ Turns AI Hallucinations Into Botnet Delivery Mechanism Latest News Vulnerabilities Patched by Fortinet, Ivanti, ServiceNowWhite House Launches AI-Driven ‘Gold Eagle’ Vulnerability Coordination InitiativeProgress Confirms Zero-Day Vulnerability Behind ShareFile DisruptionICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Schneider, RockwellCritical Vulnerabilities Patched With Fresh Chrome 150, Firefox 152 UpdatesSonicWall Issues Urgent SMA Patch Warning for Two Zero-Day ExploitsMicrosoft Patches Record 622 Vulnerabilities, Including Two Exploited Zero-DaysSynopsys Finds No Evidence of Data Breach Amid Bosch Hack Claims Trending Daily Briefing NewsletterSubscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts. Webinar: Why Email Security Keeps Failing (And What Has to Change) July 8, 2026 Join this live webinar as we break down why email-layer defenses alone can't keep pace with the modern phishing ecosystem, how agentic AI is changing the capacity equation for security teams, and more. Register Virtual Event: 2026 Cloud Security Summit July 15, 2026 This year's summit will help organizations learn how to utilize tools, controls, and design models needed to properly secure cloud environments. Interact with leading solution providers and other end users facing similar challenges in securing a variety of cloud deployments. Register People on the MoveF5 has appointed Cathy Peterman as Chief People Officer.Sean Murphy has joined F5 as a Field Chief Information Security Officer - North America.CodeHunter has appointed Stephen McCarney as Chief Strategy Officer.More People On The MoveExpert Insights The Shift Toward Business-Aligned Risk Management Moving from isolated, technical data to a continuous risk lifecycle can help organizations align security controls with actual business consequences. (Steve Durbin) How to Conduct a Successful Audit of AI-Driven Software Development As AI-generated code becomes commonplace, CISOs need new audit strategies to measure developer practices, govern AI tool usage, and identify software risks before they reach production. (Matias Madou) Frontier AI: Six Questions Every Enterprise Should Ask Security Vendors From model selection and automation to validation and measurable results, the right questions can help enterprises separate genuine AI capabilities from marketing hype. (Joshua Goldfarb) The AI Token Costs That Can Break Cybersecurity As cybersecurity platforms embrace agentic AI, organizations must balance detection performance against the escalating costs of token consumption, deployment architecture, and AI credits. (Danelle Au) When Information Becomes the Attack Surface – Understanding AI Agent Traps From hidden content injections to cognitive state poisoning, attackers are turning trusted data sources into traps for autonomous AI. (Etay Maor) Flipboard Reddit Whatsapp Whatsapp Email","https:\u002F\u002Fwww.securityweek.com\u002Fus-charges-russian-individuals-and-firms-for-running-cybercrime-services\u002F","https:\u002F\u002Fwww.securityweek.com\u002Fwp-content\u002Fuploads\u002F2024\u002F09\u002FRussian-hacking.jpeg","2026-07-15T11:58:05+00:00","2026-07-15T12:00:10.588131+00:00",8,[18,21,24,26],{"name":19,"type":20},"Russian nationals","threat_actor",{"name":22,"type":23},"ML.Cloud","vendor",{"name":25,"type":23},"Media Land",{"name":27,"type":28},"bulletproof hosting","product","6cbdd207-aaa1-4176-9534-e156b125e917",{"id":29,"icon":31,"name":32,"slug":33},null,"Nation-state","nation-state",[35,40,42,47],{"category":36},{"id":37,"icon":31,"name":38,"slug":39},"2e06f76c-d5b9-4f54-9eef-4d3447b10730","Breaches","breaches",{"category":41},{"id":29,"icon":31,"name":32,"slug":33},{"category":43},{"id":44,"icon":31,"name":45,"slug":46},"c5c77cdb-f7d7-4990-9436-c81dcbff1163","Policy","policy",{"category":48},{"id":49,"icon":31,"name":50,"slug":51},"e7b231c8-5f79-4465-8d38-1ef13aea5a14","Threat Intelligence","threat-intelligence",[]]