Amin Timovich Stigal [1] [2] [4] [6] [7] [8] [9] [10] [11] [12], a 22-year-old Russian national linked to the Russian military intelligence (GRU) [9], is wanted by the US Department of Justice and the FBI for his alleged involvement in the ‘WhisperGate’ Cyber-Attack targeting Ukrainian government computer systems and data, as well as systems in countries supporting Ukraine [2] [7], including the US [1] [2] [4] [6] [7] [8] [11] [12].
Description
Stigal is accused of conspiring with the GRU to launch cyberattacks using destructive malware to aid the Russian military in the invasion of Ukraine [12]. In a January 2022 cyberattack [3] [5], criminal records [5], patient health data [5], and motor vehicle insurance information were compromised [5]. Stigal is accused of supporting the GRU’s cyberattacks by setting up infrastructure and using the “WhisperGate” malware to target military units and critical infrastructure systems [3] [5]. Stigal faces up to five years in prison if convicted and is currently at large [9]. The US State Department is offering a reward of up to $10 million for information leading to his whereabouts or details about the cyber attacks [9]. Stigal ran a malware scheme called WhisperGate [8], posing as a common ransomware attack but actually designed to delete data and render computers inoperable [8]. He targeted essential Ukrainian government systems before the invasion and later went after countries supporting Ukraine [8], including the US [1] [2] [4] [6] [7] [8] [11] [12]. In August of the same year [4], the group hacked the transportation infrastructure of a central European country supporting Ukraine [4] [11]. Additionally, the hackers probed computers of a federal government agency in Maryland [4] [9] [11]. Stigal [1] [2] [3] [4] [5] [6] [7] [8] [9] [10] [11] [12], along with others from the GRU [10], allegedly used malware known as “WhisperGate” to target Ukrainian government entities’ computer systems [2] [10], destroying both systems and data before Russia’s invasion of Ukraine [10]. The group also attempted to sell the hacked data online and used fake identities to conceal their connections to the Russian government [10].
Conclusion
The cyber-attacks orchestrated by Stigal and the GRU have had severe consequences, compromising sensitive data and disrupting critical infrastructure. Efforts to apprehend Stigal and prevent future cyber threats are ongoing, with the US State Department offering a substantial reward for information leading to his capture [10]. The use of destructive malware like “WhisperGate” highlights the evolving nature of cyber warfare and the need for enhanced cybersecurity measures to protect against such attacks in the future.
References
[1] https://www.justice.gov/opa/pr/russian-national-charged-conspiring-russia-military-intelligence-destroy-ukrainian
[2] https://www.justice.gov/usao-md/pr/russian-national-charged-conspiring-russian-military-intelligence-destroy-ukrainian
[3] https://www.ktlo.com/2024/06/26/justice-department-charges-russian-for-allegedly-hacking-ukraines-government-systems-in-2022/
[4] https://www.aol.com/news/us-charges-russian-ukraine-hack-182036769.html
[5] https://abcnews.go.com/US/justice-department-charges-russian-allegedly-hacking-ukraine-government/story?id=111446577
[6] https://www.globalsecurity.org/wmd/library/news/ukraine/2024/06/ukraine-240626-doj01.htm
[7] https://www.infosecurity-magazine.com/news/us-charges-russian-invasion/
[8] https://news.yahoo.com/news/10m-reward-russian-hacking-mastermind-022034528.html
[9] https://cybermaterial.com/russian-hacker-indicted-in-cyber-attacks/
[10] https://www.thebaltimorebanner.com/community/criminal-justice/russian-national-charged-cyberhacking-ukraine-F5CV6J7ZDZCS3JMMFMDTKKJW4Q/
[11] https://ca.news.yahoo.com/us-charges-russian-ukraine-hack-182036529.html
[12] https://dailyvoice.com/maryland/baltimore/amin-timovich-stigal-indicted-for-cyber-crimes/
