US State: $10M Reward For NotPetya Russian Intelligence Officer Hackers
April 27, 2022
U.S. Department of State’s Rewards for Justice (RFJ) program, which is
administered by the Diplomatic Security Service, is offering a reward of
up to $10 million for information leading to the identification or
location of any person who, while acting at the direction or under the
control of a foreign government, participates in malicious cyber
activities against U.S. critical infrastructure in violation of the
Computer Fraud and Abuse Act (CFAA).
RFJ is seeking information on six officers of the Main Intelligence
Directorate of the General Staff of the Armed Forces of the Russian
Federation (GRU) for their role in a criminal conspiracy involving
malicious cyber activities affecting U.S. critical infrastructure.
GRU officers Yuriy Sergeyevich Andrienko (Юрий Сергеевич Андриенко),
Sergey Vladimirovich Detistov (Сергей Владимирович Детистов), Pavel
Valeryevich Frolov (Павел Валерьевич Фролов), Anatoliy Sergeyevich
Kovalev (Анатолий Сергеевич Ковалев), Artem Valeryevich Ochichenko (Артем
Валерьевич Очиченко), and Petr Nikolayevich Pliskin (Петр Николаевич
Плискин) were members of a conspiracy that deployed destructive malware
and took other disruptive actions for the strategic benefit of Russia
through unauthorized access to victim computers.
All six individuals work in the GRU’s Unit 74455, also known by
cybersecurity researchers as Sandworm Team, Telebots, Voodoo Bear, and
These individuals were members of the criminal conspiracy responsible
for the June 27, 2017, destructive malware infection of computers in the
United States and worldwide using malware known as NotPetya. These cyber
intrusions damaged the computers of hospitals and other medical
facilities in the Heritage Valley Health System (Heritage Valley) in
western Pennsylvania, a large U.S. pharmaceutical manufacturer, and
other U.S. private sector entities. The malicious cyber activities
collectively cost these U.S. entities nearly $1 billion in losses.
October 15, 2020, a federal grand jury indicted these six Russian
officers on counts of conspiracy to conduct computer fraud and abuse,
conspiracy to commit wire fraud, wire fraud, damaging protected
computers, and aggravated identity theft.
More information about this reward offer is located on the Rewards for
Justice website at https://rewardsforjustice.net/english/malicious_cyber_activity.html
. We encourage anyone with information on these six individuals’
malicious cyberactivity to contact Rewards for Justice via the Tor-based
tips-reporting channel at:
Since its inception in 1984, the program has paid in excess of $200
million to more than 100 people across the globe who provided actionable
information that helped prevent terrorism, bring terrorist leaders to
justice, and resolve threats to U.S. national security.