Connect with us

Hi, what are you looking for?


Malware & Threats

Ukrainian Raccoon Infostealer Operator Extradited to US

Alleged Raccoon Infostealer operator Mark Sokolovsky is awaiting trial in the US, after being extradited from the Netherlands.

A Ukrainian national charged with operating the Raccoon Infostealer malware-as-a-service (MaaS) has made an appearance in a US court after being extradited from the Netherlands.

The man, Mark Sokolovsky, 28, was arrested in March 2022, after the FBI and law enforcement agencies in Italy and the Netherlands dismantled the Raccoon Infostealer infrastructure.

In October 2022, Sokolovsky was indicted in the US for his involvement in the distribution of the Raccoon Infostealer malware to millions of computers worldwide.

Distributed using phishing and other social engineering tactics, the malware was used to steal login credentials, financial data, and other personal information.

According to court documents, in addition to stealing information from victim systems, the Raccoon Infostealer operators also leased access to the malware, charging a fee of approximately $200 per month, payable in cryptocurrency.

In 2022, the FBI announced that it had collected various types of data exfiltrated from the Raccoon Infostealer-infected computers, including over 50 million unique credentials and forms of identification.

“The United States does not believe it is in possession of all the data stolen by Raccoon Infostealer and continues to investigate,” the US Department of Justice said last week.

The FBI has created a website where victims can enter their email addresses to check whether their personal information is included in the dataset in the US government’s repository.

Advertisement. Scroll to continue reading.

Sokolovsky is charged with conspiracy to commit computer fraud, conspiracy to commit wire fraud, conspiracy to commit money laundering, and aggravated identity theft. He made an appearance in court on February 9 and is currently awaiting trial.

Related: JFK Airport Taxi Hackers Sentenced to Prison

Related: DraftKings Hacker Sentenced to 18 Months in Prison

Related: Man Sentenced to Prison for Stealing Millions in Cryptocurrency via SIM Swapping

Written By

Ionut Arghire is an international correspondent for SecurityWeek.


Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.


SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.


People on the Move

Shay Mowlem has been named CMO of runtime and application security company Contrast Security.

Attack detection firm Vectra AI has appointed Jeff Reed to the newly created role of Chief Product Officer.

Shaun Khalfan has joined payments giant PayPal as SVP, CISO.

More People On The Move

Expert Insights

Related Content


A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.

Malware & Threats

The NSA and FBI warn that a Chinese state-sponsored APT called BlackTech is hacking into network edge devices and using firmware implants to silently...


An engineer recruited by intelligence services reportedly used a water pump to deliver Stuxnet, which reportedly cost $1-2 billion to develop.

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Malware & Threats

Apple’s cat-and-mouse struggles with zero-day exploits on its flagship iOS platform is showing no signs of slowing down.

Malware & Threats

Unpatched and unprotected VMware ESXi servers worldwide have been targeted in a ransomware attack exploiting a vulnerability patched in 2021.


Daniel Kelley was just 18 years old when he was arrested and charged on thirty counts – most infamously for the 2015 hack of...