Under the procedural guidance of prosecutors from the Office of the Attorney General and in cooperation with law enforcement agencies from the USA, EU countries, and Europol, a hacker group has been neutralized, which attacked the networks of leading global companies using ransomware. One of the group's leaders has been notified of suspicion in absentia and placed on an international wanted list. The Federal Bureau of Investigation (FBI) has set a reward of up to $10 million for information about his whereabouts.

It has been established that the suspects have been attacking the servers of companies in France, Norway, Germany, the Netherlands, Canada, and the USA since 2018, encrypting over 1,000 servers and causing damages exceeding 3 billion UAH.

In August 2024, the pre-trial investigation regarding one of the most active participants of the group was completed. He is accused of unauthorized interference in the operation of information systems, creating malicious software, and extortion, facing up to 12 years in prison.

The investigation has established the complete structure of the group – from developers of malicious software and specialists in hacking corporate systems to individuals who laundered the profits. Ransomware programs such as LockerGoga, MegaCortex, HIVE, and Dharma were used for the attacks, with the perpetrators blocking access to servers and demanding ransom in cryptocurrency.

As part of the investigation, several members of the network have been arrested in Ukraine, some of whom have already faced trial. A foreign national who was on the international wanted list has been extradited to the USA.

International cooperation remains key in the fight against transnational cybercrime and in holding those responsible accountable.