Particle.news
Download on the App Store
13 ARTICLES
·
last wk.

U.S. Unseals Indictment of Alleged LockerGoga, MegaCortex and Nefilim Administrator, Offers $11 Million Reward

The rewards seek tips in a multinational effort to disrupt ransomware crews, advancing the pursuit of a key suspect.

A man receiving a ransomware attack on both his phone and laptop - a poor day for the stock image actor.
Image
Image
Image

Overview

  • Tymoshchuk, a Ukrainian national known as “deadforz,” “Boba,” “msfv” and “farnetwork,” was charged in the Eastern District of New York after a superseding indictment was unsealed on September 9.
  • He faces seven federal counts, including conspiracy, intentional damage to protected computers, unauthorized access, and transmitting a threat to disclose confidential information.
  • Prosecutors say the schemes hit more than 250 U.S. companies and many more worldwide from 2018 to 2021, causing losses measured in millions and tens of millions of dollars across multiple countries.
  • The State Department’s TOC Rewards Program announced up to $11 million for information leading to the location, arrest or conviction of Tymoshchuk or his conspirators, and he remains a fugitive.
  • Authorities say Tymoshchuk administered the Nefilim ransomware as a service from 2020 to 2021, taking a 20% cut from affiliates such as co‑defendant Artem Stryzhak, who was extradited from Spain in April 2025 and awaits trial.