US imposes sanctions on major Russian cybercrime group

"Today, the US Department of the Treasury’s Office of Foreign Assets Control (OFAC) is designating Aeza Group, a bulletproof hosting (BPH) services provider, for its role in supporting cybercriminal activity targeting victims in the United States and around the world," the statement follows.

According to the OFAC statement, Aeza Group is headquartered in Saint Petersburg. The company provided bulletproof hosting (BPH) services to cybercriminal groups and malware distributors, including operators of the Meduza and Lumma malware.

Using Aeza’s infrastructure, threat actors carried out cyberattacks targeting US defense industry companies as well as tech firms in other countries.

In addition to the main company, two affiliated firms and four Aeza Group executives were also placed under sanctions.

In coordination with the United Kingdom’s National Crime Agency (NCA), the US has also imposed restrictions on Aeza Group’s UK-registered affiliate.

Russian cybercrime activity

Russian hackers routinely target the digital infrastructure of Ukraine and Western countries.

In December 2024, Russian cybercriminal groups attacked the Ukrainian Ministry of Justice’s state registries in what was described as the largest cyberattack since the start of the war.

Recently, a hacker affiliated with a group responsible for attacks on industrial enterprises in the US, Canada, and several European countries was detained in Ukraine.

Meanwhile, US law enforcement continues to search for a fraudster who posed as an advisor to US President Donald Trump.