Ethical Hacking News
A U.S. alleged Ryuk ransomware member has pleaded guilty to helping deploy attacks on American companies and faces up to 15 years in prison. The guilty plea comes as part of ongoing efforts by U.S. authorities to combat cyber crime and data breaches.
Vardanyan pleaded guilty to helping deploy Ryuk ransomware attacks on hundreds of servers and workstations between November 2019 and April 2020. The group targeted companies in the US, including a technology company in Oregon and a school in Texas, and demanded Bitcoin payments for decryption keys. Vardanyan's guilty plea comes amid efforts by US authorities to combat cyber crime and data breaches. He faces up to 15 years in prison and will pay over $1.1 million in restitution. The Ryuk ransomware group is believed to have collected around $15 million from Bitcoin ransom payments.
The United States has seen its fair share of cyber attacks and data breaches over the years, but a recent guilty plea from an alleged Ryuk ransomware member highlights the ongoing threat that these types of attacks pose to American businesses and organizations.
According to a press release published by the Department of Justice (DoJ), Karen Serobovich Vardanyan, 34, pleaded guilty in the U.S. for his role in helping deploy Ryuk ransomware attacks on hundreds of servers and workstations between November 2019 and April 2020. Vardanyan, an Armenian national, had been extradited from Ukraine after being arrested in 2025.
The Ryuk ransomware group was known for its ability to encrypt data on victims' systems, demanding Bitcoin payments in exchange for decryption keys. The group's attacks targeted companies throughout the United States, including a technology company operating in Oregon and a school in Texas.
Between November 2019 and April 2020, Vardanyan illegally accessed corporate networks and helped deploy Ryuk ransomware on hundreds of servers and workstations. The attacks encrypted victims' data and demanded Bitcoin payments in exchange for decryption keys. Among the victims were a Michigan company that paid 200 Bitcoin (worth over $1.1 million at the time), a company in Oregon, and a school in Texas.
Overall, the group is believed to have collected around 1,610 Bitcoin, valued at more than $15 million when the ransoms were paid.
Vardanyan's guilty plea comes amid ongoing efforts by U.S. authorities to combat cyber crime and data breaches. In February 2024, a federal grand jury indicted Vardanyan on conspiracy, computer fraud, and extortion charges. He faces up to 15 years in prison and will be sentenced on September 22, 2026. Under his plea agreement, he also agreed to pay more than $1.1 million in restitution.
The Ryuk ransomware group was estimated to have generated an estimated $150 million in Bitcoin ransom payments, according to a report published by Advanced-intel and HYAS in 2021. Researchers traced 61 wallet addresses linked to the group and identified laundering mechanisms involving brokers, intermediary wallets, and cryptocurrency exchanges such as Binance and Huobi.
The operators used professional money-flow techniques and created unique ProtonMail addresses for each victim to improve operational security and avoid detection. The use of these tactics highlights the complexity and sophistication of ransomware operations like Ryuk.
In recent months, there have been several other high-profile cases involving ransomware attacks and cyber crime. In June 2026, a group of hackers was arrested by INTERPOL as part of an operation that netted over 5,800 arrests and $293 million in assets seized. Additionally, in July 2026, a hacker claimed to have stolen 35 GB of Accenture source code, prompting the company to disclose the data breach.
The recent guilty plea from Vardanyan serves as a reminder of the ongoing threat posed by cyber crime and ransomware attacks. As U.S. authorities continue to combat these threats, it is essential for businesses and organizations to take proactive steps to protect themselves against similar attacks in the future.
In addition to Vardanyan's guilty plea, several other developments have been reported recently regarding cybersecurity vulnerabilities and exploits. In July 2026, Microsoft fixed a flaw in its Defender software that had allowed RoguePlanet malware to operate undetected on Windows systems. Similarly, in June 2026, U.S. CISA added iCagenda and Balbooa Forms flaws to its Known Exploited Vulnerabilities catalog.
These developments highlight the importance of staying up-to-date with the latest cybersecurity threats and vulnerabilities. By taking proactive steps to protect themselves against cyber attacks, businesses and organizations can reduce their risk of being targeted by malicious actors like Vardanyan and the Ryuk ransomware group.
In conclusion, the guilty plea from Karen Serobovich Vardanyan highlights the ongoing threat posed by cyber crime and ransomware attacks. As U.S. authorities continue to combat these threats, it is essential for businesses and organizations to take proactive steps to protect themselves against similar attacks in the future.
Related Information:
https://www.ethicalhackingnews.com/articles/Ryuk-Ransomware-Member-Pleads-Guilty-Over-Attacks-on-US-Organizations-ehn.shtml
https://securityaffairs.com/195216/uncategorized/ryuk-ransomware-member-pleads-guilty-over-attacks-on-u-s-organizations.html
Published: Sun Jul 12 16:44:08 2026 by llama3.2 3B Q4_K_M