Categories: CyberCrimeSecurity

US Sanctions Russian Hackers Over Infrastructure Attacks

The US Treasury has imposed sanctions on two members of a pro-Russia hacking group it said was responsible for attacks on US critical infrastructure.

The Treasury said Yuliya Vladimirovna Pankratova was the leader of hacktivist group Cyber Army of Russia Reborn (CARR), while Denis Olegovich Degtyarenko was the group’s primary hacker.

CARR has conducted cyber-attacks in Ukraine and countries and against countries and companies that support it amidst the ongoing conflict there.

Those attacks include incidents involving US critical infrastructure, as well as other attacks involving the industrial control systems of water supply, hydroelectric, wastewater, and energy facilities in the US and Europe.

Denis Degtyarenko and Yuliya Pankratova of Cyber Army of Russia Reborn. Image credit: US Treasury Department

Infrastructure attacks

“CARR and its members’ efforts to target our critical infrastructure represent an unacceptable threat to our citizens and our communities, with potentially dangerous consequences,” said undersecretary of the Treasury for terrorism and financial intelligence Brian E. Nelson.

The official designation means property or organisations belonging to the two are frozen and must be reported to the Treasury, while financial institutions that engage in transactions with the people may expose themselves to sanctions.

The official exposure of the identities of Pankratova and Degtyarenko also creates an inconvenience for them and could expose them to risks.

In January CARR claimed responsibility for the overflow of water storage tanks in Abernathy and Muleshoe, Texas, manipulating human-machine interfaces to cause the loss of tens of thousands of gallons of water.

The group also compromised the supervisory control and data acquisition (SCADA) system of a US energy company, giving them control of the alarms and pumps for tanks in that system.

‘Lack of technical sophistication’

“Despite CARR briefly gaining control of these industrial control systems, instances of major damage to victims have thus far been avoided due to CARR’s lack of technical sophistication,” the Treasury said.

In May the Treasury similarly sanctioned and exposed the identity of Dmitry Khoroshev, which it said was the leader of the LockBit ransomware gang.

Law enforcement agencies seized the group’s cyber-infrastructure in February, contributing to a major dip in ransomware incidents for the first quarter, security experts have said.

CARR is one of the pro-Russia hacktivist groups expected to pose a major cyber-threat to the Paris Olympic Games opening on Friday.

Matthew Broersma

Matt Broersma is a long standing tech freelance, who has worked for Ziff-Davis, ZDnet and other leading publications

Recent Posts

China Says New Dutch Chip Export Rules Result Of ‘Coercion’

China says new Dutch export controls on chipmaking equpment result of US 'coercion' design to…

12 mins ago

iPhone 16 Gets Generative AI, Siri Upgrade

Apple launches iPhone 16 range with generative AI features, plus camera-based 'visual intelligence', new AirPods,…

42 mins ago

Google Goes On Trial In US Over Ad Tech Dominance

US trial of Google over ad tech market power begins, with forced divestiture of ad…

15 hours ago

US DOJ To Propose Google Penalties By End Of Year

US judge gives Justice Department until end of year to formulate plan for Google punishment…

22 hours ago

Trump ‘To Appoint Musk’ To Gov’t Efficiency Role If Elected

Donald Trump says he would appoint Elon Musk to lead government efficiency commission if elected,…

22 hours ago

Australian Official Received Death Threats After Musk Criticism

Australian eSafety commissioner says she received death threats after Musk criticised her for trying to…

23 hours ago