Russian Hacker Sentenced to 81 Months for $9M Ransomware Scheme - Crypto Economy

TL;DR:

• Russian hacker Aleksei Volkov was sentenced to 81 months in prison for facilitating ransomware attacks that caused over $9 million in actual losses.
• Volkov operated as an “initial access broker,” selling unauthorized access to corporate networks to criminal groups.
• According to Chainalysis, on-chain ransomware payments totaled $820 million in 2025, with the median payment growing 368% year-over-year to nearly $60,000.

A court in the Southern District of Indiana sentenced Russian hacker Aleksei Volkov, 26, a native of Saint Petersburg, to 81 months in prison for his role in a network of ransomware attacks that generated more than $9 million in actual losses and over $24 million in projected losses across multiple U.S. states. It stands as one of the most significant cases involving cryptocurrency-linked cybercrime so far this year.

The Hacker’s Role as a Gateway

Volkov did not carry out the attacks directly. Instead, he operated as what the industry calls an “initial access broker”: a specialist who identifies vulnerabilities in corporate networks, gains unauthorized access and sells that access to third parties. His buyers, including the Yanluowang group, deployed ransomware that encrypted victims’ data and demanded payments in cryptocurrencies —sometimes in the tens of millions of dollars— in exchange for restoring access and not publishing the stolen information on leak sites.


On November 25, 2025, the hacker pleaded guilty to six charges across two jurisdictions: four in the Southern District of Indiana, for unlawful transfer of identification data, trafficking in access information, fraud involving access devices and aggravated identity theft; and two in the Eastern District of Pennsylvania, for conspiracy to commit computer fraud and conspiracy to launder money. He had been arrested in Rome, Italy, prior to being extradited to the United States.

As part of the guilty plea agreement, the hacker admitted to having received a portion of the ransom payments in cryptocurrencies. The court ordered the payment of nearly $9.2 million in restitution to identified victims and the forfeiture of equipment used in the crimes.

Ransomware Keeps Evolving

Ransomware continues to evolve. According to the Crypto Crime Report 2026 by Chainalysis, on-chain ransomware payments totaled $820 million in 2025, an 8% decline from the previous year, although reported attacks grew 50% and the median payment surged 368% year-over-year to nearly $60,000.