Ruslan Magomedovich Astamirov (Руслан Магомедович Астамиров), 20, of Chechnya, Russia is allegedly involved in deploying numerous LockBit ransomware and other cyberattacks against victim computer systems in the United States, Africa, Asia and Europe. LockBit is a ransomware variant that first appeared in around January 2020.
In March 2020, the Federal Bureau of Investigation started investigating the LockBit conspiracy. From August 2020 to March 2023, Astarimov allegedly directly executed at least five cybercriminal attacks against victim computer systems in the U.S. and around the world, including at least four LockBit attacks.
In particular, Astarimov allegedly attacked a business based in West Palm Beach, Florida, USA on August 15, 2020, a business based in Tokyo, Japan on September 15, 2020 and a business in Virginia, USA on October 1, 2020. He is also accused of attacking a business based in France on November 18, 2021 and a business based in Kenya in March 2023.
On May 13, 2023, Astarimov consented to a voluntary interview with FBI agents in Arizona, USA. He admitted that he has himself acquired, used and sold stolen access credentials for various online services.
Investigators found that Astarimov well knew that his LockBit attacks were facilitated by the global LockBit activities, which targeted many victims in New Jersey, USA. On November 21, 2021, a LockBit victim in Essex County, New Jersey sustained a LockBit attack facilitated by the deployment of malicious software on the victim’s system disguised to appear like a standard Microsoft Windows system process.
Astarimov has been arrested and charged with conspiring to commit wire fraud and conspiring to intentionally damage protected computers and to transmit ransom demands. Both charges are punishable by a maximum fine of either $250,000 or twice the gain or loss from the offense.
CONAN Daily 