A Russian national, Evgenii Ptitsyn, pleaded guilty to a wire fraud conspiracy for administering the Phobos ransomware operation that breached hundreds of victims worldwide and helped collect over $39 million from more than 1,000 organizations. He was extradited from South Korea, faces up to 20 years with sentencing set for July 15, and international law enforcement actions under Operation Aether disrupted Phobos infrastructure and led to multiple arrests. #Phobos #EvgeniiPtitsyn
Keypoints
- Evgenii Ptitsyn pleaded guilty to a wire fraud conspiracy for administering the Phobos ransomware operation.
- Phobos, linked to the Crysis ransomware family, accounted for about 11% of ID Ransomware submissions from MayβNovember 2024.
- The gang collected over $39 million from more than 1,000 public and private victims, including schools, hospitals, and government agencies.
- Affiliates paid roughly $300 per deployment for decryption keys and commonly used stolen credentials to infiltrate networks and exfiltrate data.
- Operation Aether and coordinated international law enforcement actions seized servers, detained suspects, and warned hundreds of companies of imminent attacks.