A Russian national has been sentenced in the United States to 6.75 years in prison for his involvement in ransomware operations that targeted organisations and caused millions of dollars in losses.
According to the US Department of Justice, Aleksei Olegovich Volkov, 26, played a role in supporting cybercrime groups, including the Yanluowang ransomware operation. Authorities said he facilitated access to victim networks, enabling attacks against companies and institutions across the United States.
Investigators stated that Volkov’s activities contributed to more than $9 million in confirmed financial losses, with intended losses estimated at over $24 million. The attacks affected multiple organisations and were part of broader ransomware campaigns carried out by affiliated groups.
Volkov was arrested in Italy on January 18, 2024, and later extradited to the United States to face charges. He pleaded guilty in November 2025 to his role in the operations before being sentenced in federal court.
Authorities described his role as enabling initial access to compromised systems. This type of activity involves identifying vulnerabilities or using stolen credentials to gain entry into networks, which can then be sold or provided to ransomware groups that deploy malicious software and demand payment from victims.
The case forms part of ongoing enforcement efforts targeting individuals involved in ransomware activity. US officials have continued to pursue suspects located outside the country through international cooperation, including arrests and extraditions.
The sentencing reflects the scale of the financial impact linked to the attacks and the role of supporting actors in facilitating ransomware operations. Officials said such individuals play a key part in enabling broader cybercrime activity by providing access to systems later used in attacks.
The investigation involved coordination between US authorities and international partners. The case remains part of wider efforts to disrupt ransomware networks and prosecute individuals involved in different stages of cyberattacks.