A U.S. court has sentenced Latvian hacker Deniss Zolotarjovs to more than eight years in prison for his role in ransomware attacks carried out by a gang with documented ties to the Russian government, the Department of Justice announced in 2026.
Zolotarjovs was a member of Karakurt, a ransomware gang led by former leaders of the Akira and Conti ransomware operations — both of which were sanctioned by the U.S. Treasury for alleged links to Russian intelligence. Prosecutors said Zolotarjovs was responsible for escalating pressure on victims who refused to pay ransoms. Karakurt targeted more than 54 companies and collected at least $15 million in ransom payments. Its targets included U.S. government entities, disrupting 911 emergency dispatch systems, and the gang also stole children’s health information.
Beyond the conviction itself, the DOJ’s announcement highlighted the gang’s deeper connections to Russian state officials. According to prosecutors, Karakurt accessed Russian government databases and used law enforcement contacts to intimidate victims. The gang also “fueled corruption” within the Russian government — its leaders avoided paying taxes, and members regularly bribed officials to be exempted from compulsory military service.
Zolotarjovs was arrested in Georgia in 2023 and extradited to the United States in August 2024, later pleading guilty.
The case adds to a growing body of evidence cited by U.S. officials that Russia has become a safe haven for cybercriminals. Security researchers have long alleged that the Russian government shields ransomware operators from Western law enforcement, including by refusing to extradite citizens accused of cyberattacks. U.S. officials have described ransomware as one of the top national security challenges facing the country. The Russian Foreign Ministry did not respond to a request for comment.
Source: TechCrunch