Dmitry Yuryevich Khoroshev

Threat Actor updated 16 hours ago (2024-10-17T13:02:35.271Z)
Download STIX
Preview STIX
Dmitry Yuryevich Khoroshev, a Russian national from Voronezh, Russia, is identified as a significant threat actor in the cybersecurity landscape. Known by the alias "LockBitSupp," Khoroshev has been revealed as the creator, developer, and administrator of LockBit, a notorious ransomware group. His identity, which was once closely guarded, was unveiled by authorities in May 2024. The identification of Khoroshev marked a crucial turning point in the ongoing battle against cybercrime. In the aftermath of the revelation, charges were brought against Khoroshev and other members of LockBit in the District of New Jersey. This legal action followed previous indictments unsealed by the US, UK, and Australian governments in an international law enforcement operation known as Operation Cronos. The focus on LockBit and its leadership demonstrates a concerted effort by global authorities to dismantle major ransomware groups that pose significant threats to cybersecurity. In addition to these legal measures, authorities have also employed tactics such as public shaming and belittlement of LockBit affiliates to destabilize the group further. A fact sheet released by the Justice Department detailed key actions taken against major ransomware groups, including the seizure of LockBit's infrastructure and the successful disruption campaign against another prominent group, REvil. These actions underscore the commitment of authorities to combat cybercrime and bring individuals like Khoroshev to justice.
Description last updated: 2024-10-17T12:11:07.510Z
What's your take? (Question 1 of 1)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at. Create a free account to see the source evidence for each alias, and help fix any errors.
Alias DescriptionVotes
LockBitSupp is a possible alias for Dmitry Yuryevich Khoroshev. LockBitSupp, a threat actor and the alleged developer of one of the most prolific ransomware variants known as LockBit, has been identified as Russian national Dmitry Yuryevich Khoroshev. Khoroshev, who operated under aliases "LockBit" and "LockBitSupp," began developing the ransomware as early as S
2
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Analyst Notes & Discussion
Be the first to leave your mark here! Log in to share your views and vote.
Associated Malware
To see the evidence that has resulted in these malware associations, create a free account
Alias DescriptionAssociation TypeVotes
The Lockbit Malware is associated with Dmitry Yuryevich Khoroshev. LockBit is a notorious malware that operates on a ransomware-as-a-service model, which has been responsible for significant cyber attacks across the globe. One of its most high-profile targets was Boeing, from whom the LockBit gang claimed to have stolen data. This incident not only disrupted operatUnspecified
4
Source Document References
Information about the Dmitry Yuryevich Khoroshev Threat Actor was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
PreviewSource LinkCreatedAtTitle
BankInfoSecurity
15 days ago
InfoSecurity-magazine
16 days ago
BankInfoSecurity
16 days ago
InfoSecurity-magazine
21 days ago
BankInfoSecurity
2 months ago
Flashpoint
3 months ago
DARKReading
3 months ago
InfoSecurity-magazine
3 months ago
Securityaffairs
3 months ago
Securityaffairs
3 months ago
Securityaffairs
4 months ago