Cryptocurrencies
Cryptocurrencies
RankingCategoriesHistorical SnapshotsToken unlocksYield
Leaderboards
TrendingUpcomingRecently AddedGainers & LosersMost VisitedCommunity SentimentChain Ranking
Market Overview
Market OverviewCoinMarketCap 100 IndexFear and Greed IndexAltcoin Season IndexBitcoin DominanceCrypto ETFs
NFT
Overall NFT StatsUpcoming Sales
DexScan
New PairsTrending PairsMeme ExplorerGainers & LosersCommunity VotesTop Traders
Exchanges
Centralized Exchanges
SpotDerivatives
Decentralized Exchanges
SpotDerivatives
Community
FeedsTopicsLivesArticles
Products
Products
ConverterNewsletterCMC LabsTelegram BotAdvertise
Crypto APISite Widgets
Campaigns
AirdropsDiamond RewardsLearn & Earn
Calendars
ICO CalendarEvents Calendar
Learn
NewsAcademyResearchVideosGlossary
CoinMarketCap: Read what our contributors have to say. This content is provided by the community. DYOR!
Read$NaN0%
Russia’s Zservers sanctioned by US, UK, and Australia for serving crypto ransomware LockBit
Table of Contents
Market Musing-g

Russia’s Zservers sanctioned by US, UK, and Australia for serving crypto ransomware LockBit

ReadREAD
crypto.news
By crypto.news
1 month ago
3 mins read
Russia’s Zservers sanctioned by US, UK, and Australia for serving crypto ransomware LockBit

Table of Contents

Three countries have sanctioned the Russia-based hosting service Zservers for offering services to the notorious cryptocurrency ransomware gang LockBit.

A Feb. 11 press release from the U.S. Treasury’s Office of Foreign Assets Control, Australia’s Department of Foreign Affairs and Trade, and the UK’s Foreign, Commonwealth & Development Office revealed a joint crackdown, sanctioning bulletproof hosting service provider Zservers and its UK-based front company, XHOST Internet Solutions LP.

The sanctions include asset freezes, travel bans, and restrictions that cut Zservers off from the global financial system. This means any property or funds tied to them in sanctioned jurisdictions are blocked, and financial institutions risk penalties if they engage with them.

For the unaware, bulletproof hosting service providers offer infrastructure designed to shield cybercriminals from law enforcement by masking identities, locations, and online activities. According to Bradley T. Smith, Acting Under Secretary of the Treasury for Terrorism and Financial Intelligence, bad actors rely on these services to orchestrate attacks on “US and international critical infrastructure.”

The move also blacklists Zservers administrators Alexander Igorevich Mishin and Aleksandr Sergeyevich Bolshakov, along with four other individuals tied to LockBit’s operations, cutting them off from global financial systems and imposing travel bans.

You might also like: Phuket police arrest four Russian nationals accused of running crypto-ransomware attacks

Zservers serviced clients beyond LockBit

Authorities claim Mishin and Bolshakov, as Zservers administrators, provided bulletproof hosting to cyber criminals and reassigned infrastructure to LockBit affiliates to help them evade detection. Mishin also directed cryptocurrency transactions tied to ransomware operations, including payments for Zservers’ services used by multiple ransomware groups.
According to a separate report from blockchain analytics firm Chainalysis, OFAC has added a crypto wallet linked to Mishin and three other wallets tied to Zservers to its Specially Designated Nationals list.

Zservers was catering to a broad client base in the cybercrime world, the report added. Chainalysis traced at least $5.2 million in on-chain activity linked to Zservers, revealing that multiple ransomware affiliates beyond LockBit had sent funds to the service.

Chainalysis also noted that Zservers cashed out through sanctioned Russian exchange Garantex and other high-risk platforms with little to no KYC enforcement.

As previously covered by crypto.news, the LockBit ransomware group, first spotted in 2019, has been behind some of the biggest hacks and crypto extortion cases, including attacks on Bangkok Airways, Accenture, and Canadian government services.
In February 2024, a global law enforcement coalition—including the FBI, NCA, Europol, and others—dismantled LockBit’s operational network by seizing its command and control systems. In December of that year, the U.S. Department of Justice charged a Russian national for working as a developer for the ransomware group.
Read more: Russian ransomware generates over $500m in crypto proceeds, TRM Labs says
44 views
0 likes
|
See the latest updates from across the crypto universe
crypto.news

crypto.news

Other articles published on Feb 12, 2025

Market Musing-g

Tether Chooses Arbitrum to Power Its USDT0 Crosschain Stablecoin

Tether has chosen Arbitrum as the infrastructure provider for its new crosschain stablecoin, USDT0, leveraging Arbitrum’s Legacy Mesh technology.
By Coinpaper.com
1 month ago
7 mins read
Market Musing-g

Bitwise CIO: Crypto’s ‘fascinating dichotomy’ offers opportunity

The contrast between institutional appetite and retail sentiment in crypto indicates a massive opportunity, said Bitwise CIO Matt Hougan.
By crypto.news
1 month ago
2 mins read
Announcements

Early Dogecoin & SHIB Investors Won Big, But Web3Bay Promises Even Greater Rewards- Presale Hits ...

Web3Bay is changing e-commerce by cutting out middlemen, lowering fees, and giving users full control over transactions.
By Optimisus
1 month ago
3 mins read
Market Musing-g

How Missing Out on Brett’s ICO Could Be Your Last Regret – Arctic Pablo Coin’s Presale Offers a G...

The cryptocurrency world moves fast, and many investors have looked back, wondering how they missed out on the early days of now-popular coins. One such coin that continues to make headlines is Bre...
By CFN
1 month ago
7 mins read
Market Musing-g

Rexas Finance (RXS) and Coldware (COLD) Rank As Highest Crypto Presales To Reach $5

As crypto investors look for high-return opportunities in 2025, two presale projects are dominating the conversation: Coldware (COLD) and Rexas Finance (RXS).
By Crypto Daily™
1 month ago
3 mins read
Announcements

Joining the Best Meme Coin Presales to Buy Now, the Window to Get BTFD at This Price Is Shrinking...

Looking for the best meme coin presales to buy now? BTFD Coin’s presale is almost over, and the 100% bonus won’t last forever. Grab your stack today!
By TheNewsCrypto
1 month ago
4 mins read
See all articles

Join the thousands already learning crypto!

Join our free newsletter for daily crypto updates!

Subscribe