First VPN administrators sanctioned by US Treasury for ransomware attacks



  • The US Treasury has sanctioned the administrator of First VPN for assisting in ransomware attacks on US infrastructure
  • Another suspect was targeted for selling “crypters” that hide malware from security systems.
  • The move follows a May 2026 takedown by European law enforcement and the FBI who seized the VPN infrastructure.

The US government has officially issued sanctions against the operators of a notorious free virtual private network, intensifying a global offensive against the digital infrastructure used to facilitate ransomware attacks.

On Monday (July 13), the US Treasury Department’s Office of Foreign Assets Control (OFAC) named First VPN Service (also known as 1VPNS) and its Ukrainian administrator, Dmytro Rashevskyi, for inciting cybercriminals. The service, which has been in operation since 2014, was greatly favored by ransomware gangs that targeted American hospitals, municipalities and companies.

Leave a Comment

Your email address will not be published. Required fields are marked *