Artur Sungatov

Threat Actor updated 25 days ago (2024-08-14T09:52:20.038Z)

Download STIX

Preview STIX

Artur Sungatov, a Russian national, is recognized as a significant threat actor in the cybersecurity world due to his association with the LockBit ransomware group. He was indicted by the US Justice Department in February 2024, alongside Ivan Kondratyev, also known as Bassterlord. The indictment, unsealed in the District of New Jersey, charged them with deploying LockBit ransomware against numerous victims across the United States and globally. Targets included businesses in the manufacturing and semiconductor industries, among others. The indictment coincided with the seizure of LockBit's data leak site and infrastructure, highlighting the coordinated efforts to disrupt the operations of this malicious group. Artur Sungatov and Ivan Kondratyev were identified as key players in these cyberattacks, with Sungatov actively engaging in LockBit ransomware attacks and Kondratyev leading a sub-group within LockBit known as the National Hazard Society. Their activities had a widespread impact, affecting victim organizations throughout the US, including unnamed manufacturing firms. In addition to the indictments, the US Office of Foreign Assets Control (OFAC) listed ten cryptocurrency addresses in sanctions against LockBit affiliates Artur Sungatov and Ivan Kondratyev. This move further signifies the seriousness of their offences and the intent to stifle their operations. The charges brought against Sungatov and Kondratyev underline the ongoing international efforts to combat cybercrime and hold threat actors accountable for their actions.

Description last updated: 2024-08-14T09:10:16.368Z

What's your take? (Question 1 of 4)

Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.

Possible Aliases / Cluster overlaps

It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.

ID	Votes	Profile Description
Bassterlord	5	Bassterlord, a known threat actor and affiliate of the LockBit group, has been associated with multiple malicious cyber activities since August 2021. Operating under the alias "Bassterlord," Ivan Kondratyev allegedly deployed LockBit ransomware against private and municipal entities in New York, Ore

Miscellaneous Associations

Other elements of context that could aid in the identification of relevance

Ransomware

Analyst Notes & Discussion

Be the first to leave your mark here! Log in to share your views and vote.

Associated Malware

To see the evidence that has resulted in these malware associations, create a free account

ID	Type	Votes	Profile Description
Lockbit	is related to	6	LockBit is a malicious software, or malware, that has been notably active and damaging in the cyber world. Known for its ability to infiltrate systems often without detection, it can steal personal information, disrupt operations, and even hold data hostage for ransom. In the first half of 2024, Loc

Associated Threat Actors

To see the evidence that has resulted in these threatActor associations, create a free account

ID	Type	Votes	Profile Description
Ivan Kondratyev	Unspecified	4	Ivan Kondratyev, also known as Bassterlord, is a recognized threat actor associated with the notorious LockBit ransomware group. The Russian national has been linked to malicious cyber activities targeting numerous businesses and industries across the United States and globally. Operating alongside
Vasiliev	Unspecified	2	Mikhail Vasiliev, a dual Russian-Canadian national, was identified as a key player in the global LockBit ransomware conspiracy. Alongside other members including Ruslan Magomedovich Astamirov, Mikhail Pavlovich Matveev, and alleged developers Sungatov and Kondratyev, Vasiliev was involved in the dev

Source Document References

Information about the Artur Sungatov Threat Actor was read from the documents corpus below. This display is limited to 20 results, create a free account to see more

Source Link	CreatedAt	Title
CERT-EU	7 months ago	LockBit: FBI and allies seize dark-web site of world’s most prolific ransomware gang \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #ransomware
CERT-EU	7 months ago	US charges two Russian nationals in LockBit ransomware case amid global crackdown
Flashpoint	a month ago	COURT DOC: Two Foreign Nationals Plead Guilty to Participation in LockBit Ransomware Group
DARKReading	2 months ago	Two Foreign Nationals Plead Guilty to Participating in LockBit Ransomware Group
Securityaffairs	2 months ago	Russian nationals plead guilty to participating in the LockBit ransomware group
Securityaffairs	2 months ago	Russian nationals plead guilty to participating in the LockBit ransomware group
Flashpoint	4 months ago	COURT DOC: U.S. Charges Russian National with Developing and Operating LockBit Ransomware
Securityaffairs	4 months ago	Law enforcement agencies identified LockBit ransomware admin and sanctioned him
Krebs on Security	4 months ago	U.S. Charges Russian Man as Boss of LockBit Ransomware Group
BankInfoSecurity	4 months ago	LockBitSupp's Identity Revealed: Dmitry Yuryevich Khoroshev
CERT-EU	7 months ago	Operation Cronos: NCA reveals details of LockBit affiliates
Securityaffairs	7 months ago	More details about Operation Cronos that disrupted Lockbit operation
CERT-EU	7 months ago	US indicts two Russian nationals in LockBit ransomware case \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #ransomware \| National Cyber Security Consulting
CERT-EU	7 months ago	LockBit Ransomware Crackdown: US Sanctions Crypto Wallets \| #ransomware \| #cybercrime \| National Cyber Security Consulting
CERT-EU	7 months ago	Lockbit cybercrime gang disrupted in global takedown \| #cybercrime \| #infosec \| National Cyber Security Consulting
CERT-EU	7 months ago	US, international partners disrupt LockBit ransomware operations \| #ransomware \| #cybercrime \| National Cyber Security Consulting
CERT-EU	7 months ago	Police arrest LockBit ransomware members, release decryptor in global crackdown
CERT-EU	7 months ago	Telehealth & Telecare Aware
CERT-EU	7 months ago	US Offers $15 Mln For Info On LockBit Ransomware Leaders \| #ransomware \| #cybercrime \| National Cyber Security Consulting
CERT-EU	6 months ago	Ransomware group LockBit disrupted by global police operation \| #ransomware \| #cybercrime \| National Cyber Security Consulting