A Russian national, aged 26, has been given a 6.75-year prison sentence in the United States for his involvement in aiding major cybercrime organizations, including the Yanluowang ransomware group, in carrying out multiple attacks against American companies and other entities.
The U.S. Department of Justice (DoJ) revealed that Aleksei Olegovich Volkov played a significant role in orchestrating numerous ransomware attacks in the U.S., leading to actual losses exceeding $9 million and intended losses surpassing $24 million. Volkov was apprehended in Italy on January 18, 2024, and later extradited to the U.S. to face charges. He admitted guilt in November 2025.
Volkov’s role involved acting as an initial access broker, acquiring unauthorized entry to computer networks and systems of various organizations, and selling that access to criminal groups, including ransomware actors. This was achieved through exploiting vulnerabilities or finding unauthorized ways to infiltrate the networks.
The DoJ stated, “Volkov’s associates then utilized the access he provided to infect the targeted computer networks and systems with malware. This malware encrypted the victims’ data, rendering it inaccessible and disrupting their business operations.”
Following the encryption of data, the perpetrators demanded ransom payments in cryptocurrency, sometimes amounting to tens of millions of dollars, in exchange for restoring access to the data and committing not to disclose the breach or leak stolen data on a public website.
For each ransom payment made by a victim, Volkov received a portion of the illicit proceeds. He faced charges related to unlawful transfer of identification means, trafficking in access information, access device fraud, aggravated identity theft, two counts of computer fraud, and conspiracy to commit money laundering.
As part of his guilty plea, the defendant agreed to provide full restitution to victims, including a minimum of $9,167,198 to known victims to compensate for their actual losses, and surrendering the tools utilized in the commission of the crimes.
U.S. Charges Third Ransomware Negotiator Linked to BlackCat Attacks
Meanwhile, U.S. prosecutors have charged a third individual for acting as a negotiator for the BlackCat (also known as ALPHV) ransomware group, aiding the threat actors in extorting higher payments from at least 10 victims. The 41-year-old individual, Angelo Martino (previously known as “Co-Conspirator 1”), served as a ransomware negotiator for DigitalMint.
Authorities have seized nearly $9.2 million in five types of cryptocurrency (Bitcoin, Monero, Ripple, Solana, and Stellar) from 21 wallets controlled by Martino, along with confiscating luxury vehicles and properties. He faces a potential prison term of up to 20 years. In a separate development, two incident responders, Ryan Clifford Goldberg and Kevin Tyler Martin, admitted to their roles as BlackCat affiliates in December 2025.
Responding to the situation, DigitalMint stated that the actions of Martino and Martin violated the company’s policies and ethical standards, leading to their termination upon discovery of their conduct.
DigitalMint expressed condemnation for the criminal behavior of the individuals, emphasizing that it contradicts the company’s values, ethical standards, and legal obligations. The company reaffirmed its commitment to supporting organizations impacted by cyberattacks, distancing itself from any activities that undermine its core principles.
