US Charges Russian Hosts Enabling $62M in Cybercrime
US DOJ unseals indictment against Russian hosts aiding $62M in cybercrimes.
Why it matters: Significant enforcement against providers of bulletproof hosting signals rising accountability for cybercrime enablers. Corporate risk and compliance teams must monitor implications for cybersecurity exposure and vendor due diligence.
- July 14, 2026: DOJ unsealed a December 2024 indictment.
- Three Russians and two companies charge with enabling cybercrime causing $62M in losses.
- Defendants: Alexander Volosovik, Kirill Zatolokin, Yulia Pankova; companies: Medialand LLC, ML.Cloud LLC, all in St. Petersburg.
- They provided bulletproof hosting used for malware, ransomware, and phishing campaigns.
On July 14, 2026, the U.S. Department of Justice unsealed an indictment originally filed in December 2024 charging three Russian nationals and two companies with facilitating international cybercrimes that caused more than $62 million in victim losses.
The defendants—Alexander Alexandrovich Volosovik (43), Kirill Andreevich Zatolokin (34), and Yulia Vladimirovna Pankova (29)—are Russian nationals from St. Petersburg. The companies implicated are Medialand LLC and ML.Cloud LLC, headquartered in the same city.
According to the indictment, the defendants provided 'bulletproof hosting' services, which shield cybercriminal operations by anonymizing their activities and resisting law enforcement takedowns. These hosting services were essential infrastructure for distributing malware, conducting ransomware attacks, and running phishing campaigns.
"Over the course of many years, the defendants facilitated the transnational criminal activity of a vast network of cybercriminals throughout the world by providing them a safe-haven to anonymize their criminal activity," said Timothy Waters, FBI Special Agent in Charge in Detroit.
In November 2025, the U.S., UK, and Australia imposed sanctions on Medialand LLC and related entities for their roles in supporting ransomware attacks, signaling a coordinated international effort to disrupt such enabling services.TechCrunch reported.
"The criminal organizations that purposefully aid these actors—the so-called bulletproof hosts, money launderers, purveyors of stolen identity information, and the like—are no less responsible for the harms these malware campaigns cause, and we are committed to holding them accountable," added Nicholas McQuaid, Acting Assistant Attorney General for the DOJ's Criminal Division.
The unsealing of this indictment highlights advancing enforcement against cybercrime infrastructure providers. Legal and compliance teams at corporations should evaluate the risks posed by bulletproof hosting in their cybersecurity supply chains and stay alert to evolving enforcement trends.
By the numbers:
- $62 million — victim losses attributed to cybercrimes enabled by defendants
- 3 nationals and 2 companies — charged in DOJ indictment
- December 2024 — original indictment date
- July 14, 2026 — indictment unsealed