San Francisco Indicts Russian Duo for Hacking Spree As US and Allies Target Cyber Espionage, Topple Influence Ops

San Francisco Indicts Russian Duo for Hacking Spree As US and Allies Target Cyber Espionage, Topple Influence OpsSource: National Security Division, U.S. Department of Justice
Tony Ng
Published on December 08, 2023

Two Russian nationals, alleged to be working with Russia's Federal Security Service (FSB), have been indicted by a San Francisco-based federal grand jury. The charges come in the wake of accusations that the so-called "Callisto Group" hacked into computer networks across the US, UK, NATO member countries, and Ukraine. The pair have been accused of using these compromised networks to help conduct foreign malign influence operations aimed at disrupting the UK's 2019 elections, according to a Justice Department statement.

Assistant Attorney General Matthew G. Olsen highlighted the persistent threat, stating, "The Russian government continues to target the critical networks of the United States and our partners, as highlighted by the indictment unsealed today." The complex spear phishing campaign allegedly carried out by Ruslan Aleksandrovich Peretyatko and Andrey Stanislavovich Korinets was designed to not only gain unauthorized access but to also persist in victims' computers and email accounts.

U.S. Attorney Ismail J. Ramsey drew attention to the concerted international response this indictment represents, saying, "Today’s indictment is part of a coordinated international response to send a message to the conspirators that the whole of the United States government stands together and with our partners internationally to identify and disrupt cyber espionage actors." The "Callisto Group" has become infamous for targeting government and military officials, journalists, researchers, and even ex-employees of the U.S. Intelligence Community and Department of Defense.

Per the indictment details, these Russian operatives allegedly used various deceptive tactics to trick victims into handing over their credentials. Once inside the network, they had the ability to freely access victims' email accounts. Assistant Director Bryan Vorndran of the FBI’s Cyber Division has mentioned the FBI's dedication to combating these Russian threats and said, "Russian interference through malign foreign influence campaigns is deplorable, and we will not tolerate it in the United States or directed against our foreign partners." Moreover, both Peretyatko and Korinets now find themselves on the wrong side of sanctions imposed by the Department of the Treasury's Office of Foreign Assets Control (OFAC) and are also the subjects of significant rewards offered by the U.S. Department of State for information leading to their capture.

Each defendant faces charges that carry substantial prison times—but it's all hypothetically for now, as the defendants have yet to be apprehended, and they remain presumed innocent until proven guilty in a court of law.