Security Experts:

Connect with us

Hi, what are you looking for?



US Sanctions Several Entities Aiding Russia’s Cyber Operations

US Department of Treasury has announced a fresh set of sanctions against entities helping Russia in the war against Ukraine.

On the one-year anniversary of Russia’s war against Ukraine, the US Department of the Treasury announced a new set of sanctions against tens of entities that are allegedly helping the Kremlin, including its cyber operations.

The war was never fought on the field alone, but in cyberspace as well, with Russia engaging in misinformation campaigns, launching distributed denial-of-service (DDoS) attacks, and deploying disruptive malware against Ukrainian targets, including critical infrastructure.

Over the past year, the US and other countries have announced numerous sanctions on individuals and organizations that sided with Russia and, on Friday, the Treasury Department imposed new sanctions on 22 individuals and 83 entities.

[ Read: A Year of Conflict: Assessing Cyber Impact of Russia-Ukraine War ]

The sanctioned entities, the Treasury says, have been either providing Russia with material or technical support in the war, or helped it evade previously imposed sanctions.

The fresh sanctions target Russian banks, individuals and entities in the financial sector, arms dealers, organizations helping Russia procure technology and equipment, organizations in the aerospace sector, and more than 20 individuals and entities operating in Russia’s technology and electronics sectors.

Sanctions were imposed on 0Day Technologies – which the US describes as a cybersecurity consulting firm – for providing the personally identifiable information of Western citizens to Russian intelligence, and on Novilab Mobile, for working on mobile device monitoring technologies.

Forward Systems, R&DC, was sanctioned for providing software and algorithms to the Russian Main Intelligence Directorate (GRU) for offensive cyber operations, while ZAO Akuta provided programming services to GRU.

Lavina Puls, Inforus and Andrey Igorevich Masalovich, who leads the two companies, were sanctioned for supporting GRU’s malign influence operations and for selling internet monitoring and influence technology.

The announcement comes just weeks after the US Treasury slapped sanctions against seven Russians accused of running the Trickbot cybercrime operation.

Related: How Ukraine War Has Shaped US Planning for a China Conflict

Related: The Lessons From Cyberwar, Cyber-in-War and Ukraine

Related: Russian APT Gamaredon Changes Tactics in Attacks Targeting Ukraine

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this webinar to learn best practices that organizations can use to improve both their resilience to new threats and their response times to incidents.


Join this live webinar as we explore the potential security threats that can arise when third parties are granted access to a sensitive data or systems.


Expert Insights

Related Content


WASHINGTON - Cyberattacks are the most serious threat facing the United States, even more so than terrorism, according to American defense experts. Almost half...


Websites of German airports, administration bodies and banks were hit by DDoS attacks attributed to Russian hacker group Killnet


Iranian APT Moses Staff is leaking data stolen from Saudi Arabia government ministries under the recently created Abraham's Ax persona


The war in Ukraine is the first major conflagration between two technologically advanced powers in the age of cyber. It prompts us to question...


Russia-linked cyberespionage group APT29 has been observed using embassy-themed lures and the GraphicalNeutrino malware in recent attacks.

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...


A newly identified threat actor tracked as NewsPenguin has been targeting military organizations in Pakistan with sophisticated malware.

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...