Crypto

US sanctions Russia-based hosting service for aiding ransomware and info-stealers

by Market News Data

From Cointelegraph
July 1, 2025 10:46 PM:

The US Treasury has sanctioned Russia-based Aeza Group, its top executives, and a crypto wallet for allegedly facilitating ransomware and info-stealers. Aeza Group provides bulletproof hosting services to cybercriminals. Sanctions include $350,000 in crypto, Russian and UK-based companies, and four Russian nationals linked to Aeza. CertiK attributes $2.1 billion in stolen crypto to phishing attacks targeting crypto users.

OFAC sanctioned a Tron blockchain address used as an administrative wallet for Aeza, processing payments for its services. Chainalysis revealed that Aeza relied on a payment processor to receive funds, obscuring the traceability of customer deposits. The sanctioned address had regular cash-out points, linking to other cybercrime services and the Russian crypto exchange Garantex.

Aeza Group provided bulletproof hosting services to ransomware and malware groups like Meduza, Lumma infostealer operators, BianLian ransomware, RedLine infostealer panels, and BlackSprut darknet marketplace. OFAC sanctioned Aeza’s CEO, general director, technical director, and another owner, managing the business after arrests related to the Blacksprut marketplace.

US assets connected to Aeza and sanctioned individuals are frozen, with US citizens prohibited from conducting financial transactions or business dealings under threat of penalties. The sanctions aim to disrupt key cybercrime infrastructure and reduce the potential abuse surface area. Law enforcement targets the supply chain enabling large-scale cybercrime attacks.

OFAC’s sanctions on bulletproof hosting providers like Aeza aim to disrupt the supply chain supporting cybercrime activities. By targeting infrastructure, the US government seeks to prevent attacks rather than just pursuing threat actors post-incident. Taking down businesses like Aeza reduces opportunities for abuse and provides pressure points for law enforcement in combating cybercrime.

Read more at Cointelegraph: US Sanctions Ransomware And Infostealer Hosting Service

You may also like