First VPN administrators sanctioned by US Treasury over ransomware attacks


  • The US Treasury Department has sanctioned First VPN’s administrator for aiding ransomware attacks on US infrastructure
  • Another suspect was targeted for selling “encryptions” that hide malware from security systems
  • The move follows a May 2026 takedown of European law enforcement and the FBI seizing the VPN’s infrastructure

The US government has officially issued sanctions against the operators of a notorious free virtual private network, escalating a global crackdown on digital infrastructure used to facilitate ransomware attacks.

On Monday (July 13), the US Treasury’s Office of Foreign Assets Control (OFAC) designated First VPN Service (also known as 1VPNS) and its Ukrainian administrator, Dmytro Rashevskyi, for supporting cybercriminals. The service, which has been operating since 2014, was heavily favored by ransomware gangs targeting US hospitals, municipalities and businesses.

Leave a Comment

Your email address will not be published. Required fields are marked *

Scroll to Top