US Authorities Charge Alleged Key Player in Karakurt Ransomware Operations

Deniss Zolotarjovs, a Latvian national alleged to be a key figure in the notorious Russian Karakurt ransomware group, faces multiple charges in a US federal court.

Alleged Perpetrator Faces Several Charges

The charges include conspiracy to commit money laundering, wire fraud, and extortion under the Hobbs Act. The 33-year-old, previously residing in Moscow, was arrested in Georgia in late 2023 and extradited to the United States.

“Among other things, the Russian cybercrime group steals victim data and threatens to release it unless the victim pays ransom in cryptocurrency,” reads a press release from the US Attorney's Office, Southern District of Ohio. “The group maintains a leaks and auction website that lists victim companies and offers stolen data for download.”

Multiple High-Profile Heists Against US Entities

Zolotarjovs, also known as “Sforza,” is accused of orchestrating a series of high-profile digital extortion schemes against various US entities.

From August 2021 through November 2023, he allegedly led malicious operations compromising corporate data systems and exfiltrating sensitive information from at least six targets.

Subsequently, the accused and his accomplices purportedly demanded ransom in cryptocurrency, threatening to release the stolen data if their financial demands were not met.

$1.3 Million Bitcoin Ransom Secured From One Victim

In a particularly aggressive instance, the Karakurt criminal group reportedly extorted $1.3 million in bitcoin from a single organization.

Perpetrators used direct threats to intimidate employees, leveraging intense pressure to coerce payment.

Cold Case Revival and Public Perception Manipulation Attempts

Beyond merely demanding ransom, the role of the accused reportedly extended to revitalizing dormant cases where initial extortion attempts had failed.

Zolotarjovs allegedly contacted victims’ employees, business partners, and other involved parties, intensifying extortion campaigns by combining psychological assault with technical prowess.

Furthermore, Zolotarjovs is believed to have tried to manipulate public perception by hiring journalists to publish damaging articles about the victims, intending to escalate fear among targeted entities and pressure them to comply with ransom demands to avoid public scandal.