Today's cybersecurity headlines are brought to you by ThreatPerspective


Ethical Hacking News

The U.S. Treasury Department's Office of Foreign Assets Control Designates First VPN Service and Malware Cryptor Seller Over Ransomware Support




The U.S. Treasury Department's Office of Foreign Assets Control has designated the first-ever VPN service provider, 1VPNS, along with its administrator and a Belarusian national, for allegedly enabling ransomware actors' and other cybercriminals' malicious activities. The move marks a significant escalation in the global efforts to combat ransomware and cybercrime.

  • The U.S. Treasury Department's Office of Foreign Assets Control (OFAC) has designated 1VPNS, a VPN service provider, along with its administrator Dmytro Rashevskyi and Belarusian national Yegeniy Vladimirovich Silayev, for allegedly enabling ransomware actors' malicious activities.
  • 1VPNS had been operating since 2014, claiming to neither keep logs of users' identities or activities nor cooperate with law enforcement.
  • The U.S. government has also imposed sanctions on Russian cyber networks for their "persistent and increasingly reckless attempts to sow chaos and division across Europe."
  • The FBI has issued an advisory about FSB Center 16 cyber actors' exploitation of vulnerable networking devices, primarily in the energy sector.



  • The U.S. Treasury Department's Office of Foreign Assets Control (OFAC) has taken a significant step in its efforts to combat cybercrime by designating the first-ever VPN service provider, 1VPNS, along with its 45-year-old Ukrainian administrator, Dmytro Rashevskyi, and Belarusian national Yegeniy Vladimirovich Silayev, for allegedly enabling ransomware actors' and other cybercriminals' malicious activities. This designation is a major move towards holding accountable those who facilitate the spread of ransomware, which has been wreaking havoc on businesses, financial institutions, hospitals, and municipal governments across the United States.

    According to reports, 1VPNS had been operating since 2014, touting that it neither keeps a log of users' identities or activities nor cooperates with law enforcement to tackle illegal activity originating from servers it rents to customers. However, the U.S. Treasury Department's Office of Foreign Assets Control (OFAC) alleges that the VPN service provider and its administrator, Rashevskyi, had been offering tools to ransomware groups, along with Silayev, who was accused of selling cryptors to help conceal malware as safe programs to avoid being detected by security tools.

    The U.S. government has also imposed sanctions on Russian cyber networks for their "persistent and increasingly reckless attempts to sow chaos and division across Europe." The sanctions target 24 individuals and entities behind destructive cyber and hybrid operations, including operators involved in proxy networks linked to the Russian Intelligence Services (RIS). This move is aimed at disrupting Russia's efforts to carry out disruptive sabotage operations against Poland's energy grid and other critical infrastructure.

    Furthermore, the U.S. Federal Bureau of Investigation (FBI) has issued an advisory about FSB Center 16 cyber actors' exploitation of poorly configured and vulnerable networking devices across the world to opportunistically hack into multiple critical infrastructure sector networks. The Russian FSB Center 16 cyber actors primarily use scanning to identify poorly configured networking devices, primarily routers, for exploitation. They also abuse common vulnerabilities and exposures (CVEs) in Cisco devices, such as CVE-2018-0171 and CVE-2008-4128, as a way to discover and exploit poorly configured networking appliances.

    The threat actors behind the campaign are tracked under various names, including Berserk Bear, Crouching Yeti, Dragonfly, Energetic Bear, Ghost Blizzard, Energetic Bear, and Static Tundra. The U.S. National Security Agency (NSA) has warned that this is an ongoing issue that has impacted various U.S. and foreign networks across multiple sectors, including the Defense Industrial Base, communications, energy, financial services, government facilities, and healthcare sectors.

    The designation of 1VPNS and its associates by the U.S. Treasury Department's Office of Foreign Assets Control marks a significant escalation in the global efforts to combat ransomware and cybercrime. The move highlights the need for increased vigilance and cooperation among governments, law enforcement agencies, and cybersecurity experts to tackle the growing threat of cybercrime.

    In conclusion, the designation of 1VPNS and its associates by the U.S. Treasury Department's Office of Foreign Assets Control is a major step towards holding accountable those who facilitate the spread of ransomware. The sanctions imposed on Russian cyber networks and the FBI's advisory about FSB Center 16 cyber actors' exploitation of vulnerable networking devices underscore the need for continued cooperation and vigilance in the fight against cybercrime.



    Related Information:
  • https://www.ethicalhackingnews.com/articles/The-US-Treasury-Departments-Office-of-Foreign-Assets-Control-Designates-First-VPN-Service-and-Malware-Cryptor-Seller-Over-Ransomware-Support-ehn.shtml

  • https://thehackernews.com/2026/07/us-sanctions-first-vpn-service-and.html

  • https://nvd.nist.gov/vuln/detail/CVE-2018-0171

  • https://www.cvedetails.com/cve/CVE-2018-0171/

  • https://nvd.nist.gov/vuln/detail/CVE-2008-4128

  • https://www.cvedetails.com/cve/CVE-2008-4128/


  • Published: Wed Jul 15 04:10:44 2026 by llama3.2 3B Q4_K_M













    © Ethical Hacking News . All rights reserved.

    Privacy | Terms of Use | Contact Us