Bring me Evil Corp! US puts out largest ever bounty on a cybercriminal

By Harry Menear
Yesterday, the United States Treasury Department’s Office of Foreign Assets Control (OFAC) officially announced that it has brought charges against th...

Yesterday, the United States Treasury Department’s Office of Foreign Assets Control (OFAC) officially announced that it has brought charges against the Russian hacking organisation known as Evil Corp.

In addition to the charges, the State Department has announced a bounty of $5mn for any party who provides information leading to the arrest of the group’s leader. 

The charges have been laid at the feet of Evil Corp chief, Maksim Yakubets and Igor Turashev, an associate of the group. Yakubets is believed to have ties to the Russian government and, according to OFAC, “provides direct assistance to the Russian government’s malicious cyber efforts, highlighting the Russian government’s enlistment of cybercriminals for its own malicious purposes.” If true, this would be a truly malicious act. 

According to OFAC, Evil Corp was behind the distribution of a piece of malware called Dridex, a piece of code that leverages macros in Microsoft Office in order to infect systems and steal personal information like banking credentials. OFAC estimates that Evil Corp used the Dridex malware to infect computers and harvest login credentials from hundreds of banks and financial institutions in over 40 countries, accounting for over $100mn in theft.  This software has allegedly caused millions of dollars of damage to US and international financial institutions and their customers.


Annually, it’s estimated that cybercrime costs the global economy in excess of $600bn. OFAC - which is working in tandem with the US State Department - believes that Yakubets and Evil Corp have “engaged in a decade-long cybercrime spree that deployed two of the most damaging pieces of financial malware ever used and resulted in tens of millions of dollars of losses to victims worldwide," Assistant Attorney General Brian Benczkowski said in a statement.

“Treasury is sanctioning Evil Corp as part of a sweeping action against one of the world’s most prolific cybercriminal organizations. This coordinated action is intended to disrupt the massive phishing campaigns orchestrated by this Russian-based hacker group,” said Steven T. Mnuchin, Secretary of the Treasury.  “OFAC’s action is part of a multiyear effort with key NATO allies, including the United Kingdom. Our goal is to shut down Evil Corp, deter the distribution of Dridex, target the “money mule” network used to transfer stolen funds, and ultimately to protect our citizens from the group’s criminal activities.” 


Featured Articles

Accelerate outcomes and cut waste with IT Asset Management

Having a comprehensive IT Asset Management strategy is essential for organisations to keep track of their IT assets and CIOs have a key part to play

Tech leaders already looking to build back from recession

A new survey shows tech leaders are optimistic despite a looming recession, with some stakeholders expecting economic pressures to be a business benefit

Robot dining staff on call to help care in the community

Robots are ready to serve seniors as retirement communities struggle with staff shortages, and a new report says pensioners appreciate a metal maître d

BlackBerry drives its QNX technology to the cloud with AWS

Cloud & Cybersecurity

6G: Predictions for the network of the future

Cloud & Cybersecurity

Blockchain in space could take tokens and NFTs into orbit

Digital Transformation