DOJ Seizes Over $2.8M in Cryptocurrency from Alleged Zeppelin Ransomware Operator

📢 Overview

The U.S. Department of Justice has unsealed six warrants authorizing the seizure of more than $2.8 million in cryptocurrency, $70,000 in cash, and a luxury vehicle linked to alleged ransomware activities by Ianis Aleksandrovich Antropenko. The action was carried out in the Eastern District of Virginia and the Northern District of Texas.

🧾 Key Details

🕵️‍♂️ Allegations

According to the indictment, Antropenko and co-conspirators deployed Zeppelin ransomware to target individuals, businesses, and organizations globally, including in the United States. Their operations allegedly involved:

• Encrypting and exfiltrating victim data
• Demanding ransom payments for decryption, non-disclosure, or deletion of stolen data
• Laundering ransomware proceeds through cryptocurrency mixers like ChipMixer (shut down in 2023) and structured cash deposits

⚖️ Legal Proceedings

The seized assets are alleged to be either proceeds of ransomware operations or funds involved in laundering those proceeds. The DOJ coordinated with multiple agencies to secure the warrants and conduct the seizures.

Key DOJ Officials Involved:

• Acting Assistant Attorney General Matthew R. Galeotti
• Acting U.S. Attorney Nancy Larson (N.D. Texas)
• Special Agent in Charge Dominique Evans (FBI Norfolk)
• Special Agent in Charge R. Joseph Rothrock (FBI Dallas)

📊 Background on CCIPS

The Computer Crime and Intellectual Property Section (CCIPS) leads cybercrime prosecutions in cooperation with law enforcement worldwide. Since 2020, CCIPS has:

• Secured convictions for over 180 cybercriminals
• Obtained court orders returning over $350 million to victims
• Disrupted multiple ransomware groups, preventing more than $200 million in ransom payments

Source: U.S. Department of Justice - Criminal Division, Northern District of Texas, Eastern District of Virginia