U.S. Sanctions Garantex and Grinex for $100M in Ransomware-Linked Illicit Crypto Transactions

First reported

15.08.2025 14:27

Last updated

📰 1 unique sources, 1 articles

Summary

Hide ▲

The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) renewed sanctions against the Russian cryptocurrency exchange Garantex and its successor, Grinex, for facilitating over $100 million in transactions linked to ransomware and other cybercriminal activities since 2019. The sanctions target three executives of Garantex and six associated companies in Russia and the Kyrgyz Republic. Garantex was initially sanctioned in April 2022 for facilitating transactions from darknet markets and illicit actors. Garantex's website was seized in March 2025, and its co-founder, Aleksej Besciokov, was arrested in India. Grinex, identified as Garantex's successor, continued processing illicit transactions, with 82% of its volume linked to sanctioned entities.

Timeline

15.08.2025 14:27 📰 1 articles · ⏱ 1mo ago

U.S. renews sanctions against Garantex and Grinex for $100M in ransomware-linked transactions
The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) renewed sanctions against Garantex and its successor, Grinex, for facilitating over $100 million in transactions linked to ransomware and cybercriminal activities since 2019. The sanctions target three executives of Garantex and six associated companies in Russia and the Kyrgyz Republic. Grinex, identified as Garantex's successor, continued processing illicit transactions, with 82% of its volume linked to sanctioned entities. The U.S. Department of State announced rewards for information leading to the arrest of key Garantex leaders, and the U.S. Department of Justice seized assets linked to Zeppelin ransomware.
Show sources

U.S. Sanctions Garantex and Grinex Over $100M in Ransomware-Linked Illicit Crypto Transactions — thehackernews.com — 15.08.2025 14:27
Open in new tab

Information Snippets

Garantex facilitated over $100 million in transactions linked to ransomware and cybercriminal activities since 2019.
First reported: 15.08.2025 14:27

📰 1 source, 1 article
Show sources
- U.S. Sanctions Garantex and Grinex Over $100M in Ransomware-Linked Illicit Crypto Transactions — thehackernews.com — 15.08.2025 14:27
Garantex was first sanctioned in April 2022 for facilitating transactions from darknet markets and illicit actors.
First reported: 15.08.2025 14:27

📰 1 source, 1 article
Show sources
- U.S. Sanctions Garantex and Grinex Over $100M in Ransomware-Linked Illicit Crypto Transactions — thehackernews.com — 15.08.2025 14:27
Garantex's website was seized in March 2025, and its co-founder, Aleksej Besciokov, was arrested in India.
First reported: 15.08.2025 14:27

📰 1 source, 1 article
Show sources
- U.S. Sanctions Garantex and Grinex Over $100M in Ransomware-Linked Illicit Crypto Transactions — thehackernews.com — 15.08.2025 14:27
Garantex rebranded as Grinex to evade sanctions, continuing to process illicit transactions.
First reported: 15.08.2025 14:27

📰 1 source, 1 article
Show sources
- U.S. Sanctions Garantex and Grinex Over $100M in Ransomware-Linked Illicit Crypto Transactions — thehackernews.com — 15.08.2025 14:27
Grinex processed over $100 million in transactions, with 82% linked to sanctioned entities.
First reported: 15.08.2025 14:27

📰 1 source, 1 article
Show sources
- U.S. Sanctions Garantex and Grinex Over $100M in Ransomware-Linked Illicit Crypto Transactions — thehackernews.com — 15.08.2025 14:27
Garantex and Grinex facilitated transactions for multiple ransomware variants, including Conti, Black Basta, LockBit, NetWalker, Phoenix Cryptolocker, and Ryuk.
First reported: 15.08.2025 14:27

📰 1 source, 1 article
Show sources
- U.S. Sanctions Garantex and Grinex Over $100M in Ransomware-Linked Illicit Crypto Transactions — thehackernews.com — 15.08.2025 14:27
Garantex used the A7A5 token, issued by Old Vector, to regain access to customer accounts.
First reported: 15.08.2025 14:27

📰 1 source, 1 article
Show sources
- U.S. Sanctions Garantex and Grinex Over $100M in Ransomware-Linked Illicit Crypto Transactions — thehackernews.com — 15.08.2025 14:27
A7A5 token transfers were valued at $41.2 billion, with daily transfers of at least $1 billion.
First reported: 15.08.2025 14:27

📰 1 source, 1 article
Show sources
- U.S. Sanctions Garantex and Grinex Over $100M in Ransomware-Linked Illicit Crypto Transactions — thehackernews.com — 15.08.2025 14:27
Garantex's executives procured infrastructure, registered trademarks, and engaged in business development to legitimize activities.
First reported: 15.08.2025 14:27

📰 1 source, 1 article
Show sources
- U.S. Sanctions Garantex and Grinex Over $100M in Ransomware-Linked Illicit Crypto Transactions — thehackernews.com — 15.08.2025 14:27
The U.S. Department of State announced rewards for information leading to the arrest of key Garantex leaders.
First reported: 15.08.2025 14:27

📰 1 source, 1 article
Show sources
- U.S. Sanctions Garantex and Grinex Over $100M in Ransomware-Linked Illicit Crypto Transactions — thehackernews.com — 15.08.2025 14:27
The U.S. Department of Justice seized over $2.8 million in cryptocurrency, $70,000 in cash, and a luxury vehicle linked to Zeppelin ransomware.
First reported: 15.08.2025 14:27

📰 1 source, 1 article
Show sources
- U.S. Sanctions Garantex and Grinex Over $100M in Ransomware-Linked Illicit Crypto Transactions — thehackernews.com — 15.08.2025 14:27
Over $300 million in cryptocurrency assets linked to cybercrime and fraud schemes, including romance baiting scams, have been frozen.
First reported: 15.08.2025 14:27

📰 1 source, 1 article
Show sources
- U.S. Sanctions Garantex and Grinex Over $100M in Ransomware-Linked Illicit Crypto Transactions — thehackernews.com — 15.08.2025 14:27

Summary

Timeline

U.S. renews sanctions against Garantex and Grinex for $100M in ransomware-linked transactions

Information Snippets