In a major international operation, authorities have arrested key affiliates of the notorious Phobos ransomware group, disrupting their criminal activities.
In a report by the US FBI Cyber Division on February 10, 2025, law enforcement agencies have apprehended Roman Berezhnoy and Egor Nikolaevich Glebov, two Russian nationals accused of operating the Phobos ransomware. This cybercrime group has allegedly targeted over 1,000 entities worldwide, including hospitals, educational institutions, and private companies, extorting more than $16 million in ransom payments. The arrests mark a significant blow to the ransomware network, which has been a persistent threat to global cybersecurity.
Their operations involved hacking into victims’ networks, encrypting data, and demanding ransom payments for decryption keys.
The US Justice Department, along with international judicial and law enforcement partners, played a crucial role in this operation namely in the United Kingdom, Germany, Japan, Spain, Belgium, Poland, Czech Republic, France, Thailand, Finland, and Romania, as well as Europol and the U.S. Department of Defense Cyber Crime Center. The arrests were part of a broader strategy to dismantle the Phobos network, which included technical disruptions to their infrastructure and additional arrests.
To further protect organizations from Phobos ransomware attacks, the US Justice Department continues to work with international law enforcement to track down and prosecute other members of the Phobos group. Additional details are provided at “StopRansomware.gov” and the Cybersecurity and Infrastructure Security Agency (CISA) has issued guidelines as well. These include regular data backups, implementing robust security measures, and educating employees about phishing and other cyber threats.
#CyTech #CyTechNewsRoom #Cybersecurity #CISO #CISOWorkplace™ #CIM #CSRM #Ransomware #PhobosRansomware #USJusticeDepartment #InternationalDisruption
Leave a Reply