Russia on Friday said it had dismantled the prominent hacking group REvil, which carried out a high-profile attack last year on IT software company Kaseya, following a request from Washington.
Cybersecurity was one of the main issues on the agenda of a summit meeting between Russian President Vladimir Putin and US President Joe Biden last June.
Russia’s Federal Security Service (FSB) said in a statement that it had “suppressed the illegal activities” of members of the group during raids on 25 addresses that swept up 14 people.
The searches were carried out following an “appeal from the relevant US authorities”.
Members of the group “developed malware, organised the embezzlement of funds from the bank accounts of foreign citizens,” the FSB said.
The equivalent of 426 million rubles ($5.5 million or 4.8 million euros) and 20 luxury cars were seized in the operation, the statement added.
During a phone call in July, Biden told Putin to “take action” against ransomware groups operating in Russia, warning that otherwise Washington will take “any necessary actions” to defend Americans.
The unprecedented attack targeting the US software firm Kaseya affected an estimated 1,500 businesses.
The Kaseya attack, which was reported on July 2, shut down a major Swedish supermarket chain and ricocheted around the world, impacting businesses in at least 17 countries, from pharmacies to gas stations, as well as dozens of New Zealand kindergartens.
Shortly after the attack, the “dark web” page of REvil went offline, sparking speculation about whether the move was the result of a government-led action.