SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cybercrime

LockBit Ransomware Developer Extradited to US

Russian-Israeli LockBit ransomware developer Rostislav Panev has been extradited from Israel to the United States.
LockBit ransomware developer extradited

The US Justice Department announced on Thursday that a LockBit ransomware developer arrested in Israel in 2024 has been extradited to the United States, where he faces charges related to his role in the cybercrime operation.

Rostislav Panev, aged 51, is a dual Russian and Israeli national. He has been accused of helping develop the LockBit ransomware, which he allegedly admitted after he was taken into custody by Israeli authorities in August 2024.

Authorities have accused him of working on the LockBit malware between June 2022 and February 2024, for which he received roughly $10,000 worth of cryptocurrency per month. He received more than $230,000 for his work, according to the DoJ.

Panev is said to have admitted that he did coding, development and consulting work for the LockBit group. The man admitted working on code designed to disable security software, spread the malware in a network, and print the ransom note on the victim’s printers.

The Russian-Israeli national exchanged private messages on a cybercrime forum with LockBitSupp, LockBit’s main administrator, who is believed to be Russian national Dmitry Yuryevich Khoroshev. 

Law enforcement dealt a major blow to the LockBit operation last year after hacking its infrastructure. Authorities say the cybercriminals targeted more than 2,500 organizations across 120 countries and received at least $500 million in ransom payments from their victims.

The US has charged seven individuals accused of being involved in the LockBit operation. Some of them are in custody, but Khoroshev and others are still at large, with rewards of up to $10 million being offered for information that leads to their capture. 

One LockBit affiliate who had been living in Canada was sentenced to nearly four years in prison last year. Other hackers involved in LockBit attacks have been charged for their role in other cybercrime activities.

Advertisement. Scroll to continue reading.

Related: Russian Cybercrime Network Targeted for Sanctions Across US, UK and Australia

Related: Nigerian Accused of Hacking Tax Preparation Firms Extradited to US

Related: Russian Phobos Ransomware Operator Extradited to US

Written By

Eduard Kovacs (@EduardKovacs) is a managing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

More from

Latest News

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Virtual Event: Threat Detection and Incident Response Summit
May 21, 2025

Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.

Register

Webinar: Which Security Testing Approach is Right for You?
March 25, 2025

Learn how integrating BAS and Automated Penetration Testing empowers security teams to quickly identify and validate threats, enabling prompt response and remediation.

Register

People on the Move

Wendi Whitmore has taken the role of Chief Security Intelligence Officer at Palo Alto Networks.

Phil Venables, former CISO of Google Cloud, has joined Ballistic Ventures as a Venture Partner.

David Currie, former CISO of Nubank and Klarna, has been appointed CEO of Vaultree.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.