U.S. prosecutors revealed that a ransomware gang accessed Russian government databases, enabling its leaders to evade taxes and military service while fueling corruption within the Russian state.
The Department of Justice disclosed that the cybercriminal organization gained unauthorized access to sensitive Russian government systems. The breach provided multiple advantages to the gang's leadership: members exploited the stolen data to avoid paying taxes and escape mandatory military conscription.
The case highlights how ransomware operations can serve dual purposes beyond traditional extortion schemes. By infiltrating government networks, the gang simultaneously weakened Russian state institutions while securing personal benefits for its operators.
The DOJ's statement underscores growing concerns about ransomware gangs operating within geopolitical gray zones. While many such groups target Western organizations, this case demonstrates how some maintain connections to or operate within jurisdictions with weak enforcement, allowing them to operate with minimal consequence.
The disclosure adds to mounting pressure on Russia to address cybercriminal sanctuaries within its borders, though such efforts have historically faced significant obstacles due to alleged state protection of hacking operations.
Artificial intelligence discovered a critical security vulnerability in Linux kernel code that human developers overlooked for over a decade. The bug could allow unauthorized root access to systems.
Researchers have demonstrated a new attack called 'Ghostcommit' that hides prompt injections in PNG files to fool AI code reviewers and agents into exposing repository secrets.
Australia's eSafety watchdog will investigate whether major adult websites are allowing users to bypass age verification requirements using virtual private networks (VPNs). The probe follows new regulations introduced in March requiring age checks on adult content.