Bitcoin
$63,965.14+3.64%
Ethereum
$3,052.84+2.63%
Binance Coin
$557.13+3.16%
Solana
$142.61+5.92%
XRP
$0.51100273+5.25%
Dogecoin
$0.15539268+6.55%
Toncoin
$6.07-9.10%
Cardano
$0.47823627+8.21%
Shiba Inu
$0.00002312+6.49%
Avalanche
$35.07+4.50%
Wrapped Bitcoin
$64,147.50+5.42%
Tron
$0.10973215+1.81%
PlayIconNav
Crypto Prices CoinDesk 20 Index CoinDesk 20 Index
Consensus 2024Price Increase Extension Ends In
00
DAYS
16
HR
17
MIN
18
SEC
Finance

Russia-Affiliated Addresses Received 74% of Ransomware Revenue Last Year: Chainalysis

Moscow City firms received as much as 48% of their crypto from illicit addresses.

By Eliza Gkritsi
AccessTimeIconFeb 14, 2022 at 1:00 p.m. UTC
Updated May 11, 2023 at 3:59 p.m. UTC
Russia Kremlin (Viacheslav Lopatin/Shutterstock)
Russia Kremlin (Viacheslav Lopatin/Shutterstock)
10 Years of Decentralizing the Future
May 29-31, 2024 - Austin, TexasThe biggest and most established global hub for everything crypto, blockchain and Web3.Register Now

Almost three-quarters of revenue from ransomware attacks last year, or $400 million, went to addresses that are “highly likely” to be affiliated with Russia, according to a report from crypto analytics firm Chainalysis.

  • The firm determines whether ransomware strains are affiliated with Russia based on three criteria: Whether they avoid attacking former Soviet countries, markers such as language and location and whether they are related to Russia-based cybercrime organization Evil Corp., Chainalysis said on Monday.
  • Ransomware attacks have grown in the past year, according to a joint report of U.S., U.K. and Australian cybersecurity authorities. North American addresses are the biggest targets, according to another Chainalysis report. The U.S. government is pushing for measures to combat this type of attack, in which hackers hold a firm’s data hostage.
  • In 2019-2021, between 29% and 48% of all crypto going to addresses belonging to businesses in Moscow City, the Russian capital’s financial center, came from “illicit and risky” addresses, said the research report.
  • The recipients included Suex, an over-the-counter exchange that has been sanctioned by the U.S. government; Eggchange, whose co-founder was reportedly arrested by Russian authorities in November; and peer-to-peer exchange Bitzlato.
  • These firms are linked to money laundering of the illegally obtained funds, Chainalysis said.
  • Some instances of firms receiving low proportions of illicitly obtained crypto can be attributed to their lack of awareness, rather than criminal activity, the report said.
  • Of all the crypto going to Moscow City, funds coming from scams at $313 million and darknet markets at $296 million made up the majority of illicit crypto in that time period. Ransomware came third at $38 million.
VolumeMuteUnmute

Read more: North Korean Hackers Stole $400M in 2021, Mostly in Ether

Disclosure

Please note that our privacy policy, terms of use, cookies, and do not sell my personal information has been updated.

CoinDesk is an award-winning media outlet that covers the cryptocurrency industry. Its journalists abide by a strict set of editorial policies. In November 2023, CoinDesk was acquired by the Bullish group, owner of Bullish, a regulated, digital assets exchange. The Bullish group is majority-owned by Block.one; both companies have interests in a variety of blockchain and digital asset businesses and significant holdings of digital assets, including bitcoin. CoinDesk operates as an independent subsidiary with an editorial committee to protect journalistic independence. CoinDesk employees, including journalists, may receive options in the Bullish group as part of their compensation.

Eliza Gkritsi
Eliza Gkritsi

Eliza Gkritsi is a CoinDesk contributor focused on the intersection of crypto and AI.

Follow @egreechee on Twitter

Learn more about Consensus 2024, CoinDesk's longest-running and most influential event that brings together all sides of crypto, blockchain and Web3. Head to consensus.coindesk.com to register and buy your pass now.

Read more about
RussiaCrimeRansomware