A Latvian national who played closer for a prolific ransomware crew is headed to federal prison, after a Cincinnati judge handed down an 8.5-year sentence that prosecutors say should reverberate across the cybercrime world. Deniss Zolotarjovs, 35, was accused of helping a global extortion ring squeeze dozens of U.S. companies, poring over stolen files, advising co-conspirators on pressure tactics, and pocketing a cut of the ransoms. Authorities say the scheme pulled in millions in cryptocurrency from victims across the Southern District of Ohio.
According to a press release from the U.S. Attorney’s Office for the Southern District of Ohio, Zolotarjovs was sentenced to 102 months after pleading guilty in July 2025 to conspiracy to commit money laundering and wire fraud. The office says he was arrested overseas in December 2023, fought extradition, and was moved into U.S. custody in August 2024. Senior U.S. District Judge Michael R. Barrett imposed the sentence.
Local coverage fills in how the money allegedly changed hands. WKRC Local 12 reports that Zolotarjovs demanded payments ranging from roughly $25,000 up to about $13 million and typically took around 10 percent of whatever was paid in cryptocurrency. The outlet also reports that one company with offices in Hamilton, Butler, Montgomery and Franklin counties paid about $1.3 million, and that investigators set up an arrest meeting in Georgia after he allegedly offered information to the FBI in exchange for $365,000.
How Prosecutors Say He Worked
Prosecutors say Zolotarjovs did not write the malware that broke into systems. Instead, they describe him as the deal-maker who studied stolen files, advised on which data would hurt most if leaked and coached others on how to ratchet up pressure on victims. The Justice Department’s statement says he even suggested publishing pediatric patient lists and medical histories to punish a health care victim that refused to pay. “With this sentence, a cruel, ruthless, and dangerous international cybercriminal is now behind bars,” Assistant Attorney General A. Tysen Duva said in the DOJ release.
Local Impact And Victims
The government says the conspiracy, which operated in the region from June 2021 through March 2023, involved at least 53 victims and caused about $56 million in actual losses, including victims and client companies in the Southern District of Ohio. That tally places the case among the more damaging ransomware campaigns to hit the Cincinnati area in recent memory and highlights why federal prosecutors here keep leaning into cross-border cyber investigations.
What Cyber Reporters Say
Security outlets that tracked Zolotarjovs’s indictment have noted that Karakurt and related brands have been linked to a run of big-money extortion schemes in recent years. Coverage by reporters who follow cybercrime has described how these transnational ransomware groups use negotiators like Zolotarjovs to push payouts higher, then shuffle the proceeds through layers of cryptocurrency wallets before cashing out.
Legal Fallout
Zolotarjovs’s sentence closes one chapter in a multiagency investigation that involved the FBI’s Cincinnati office along with international partners, but federal prosecutors say they are still pursuing others tied to the group. The case underscores both how far ransomware crews can reach from overseas keyboards and how far law enforcement is willing to go across borders to track them down.
