{"id":190466,"date":"2026-02-25T06:53:00","date_gmt":"2026-02-25T11:53:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/02\/25\/treasury-imposes-cyber-related-sanctions-on-russian-and-uae-individuals-entities\/"},"modified":"2026-02-25T07:20:10","modified_gmt":"2026-02-25T12:20:10","slug":"treasury-imposes-cyber-related-sanctions-on-russian-and-uae-individuals-entities","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/02\/25\/treasury-imposes-cyber-related-sanctions-on-russian-and-uae-individuals-entities\/","title":{"rendered":"Treasury Imposes Cyber Related Sanctions on Russian and UAE Individuals, Entities"},"content":{"rendered":"<p><a href=\"https:\/\/www.hstoday.us\/subject-matter-areas\/cybersecurity\/treasury-imposes-cyber-related-sanctions-on-russian-and-uae-individuals-entities\/\">Treasury Imposes Cyber Related Sanctions on Russian and UAE Individuals, Entities<\/a><\/p>\n<p><a href=\"https:\/\/www.hstoday.us\/subject-matter-areas\/cybersecurity\/treasury-imposes-cyber-related-sanctions-on-russian-and-uae-individuals-entities\/\">https:\/\/www.hstoday.us\/subject-matter-areas\/cybersecurity\/treasury-imposes-cyber-related-sanctions-on-russian-and-uae-individuals-entities\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-02-25 06:53:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.hstoday.us\">www.hstoday.us<\/a><\/p>\n<p>Author: <a href=\"\"><\/a><\/p>\n<p> Using an unordered list, summarize the following article with between 4 and 8 key points. The Department of the Treasury\u2019s Office of Foreign Assets Control (OFAC) designated Sergey Sergeyevich Zelenyuk\u00a0(Zelenyuk)\u00a0and his company,\u00a0Matrix LLC\u00a0(doing business as\u00a0Operation Zero), as well as five associated individuals and entities, for their acquisition and distribution of cyber tools harmful to U.S. national security.\u00a0 Zelenyuk\u00a0and Operation Zero\u00a0trade in \u201cexploits\u201d\u2014pieces of code or techniques that take advantage of vulnerabilities in a computer program to allow users to gain unauthorized access, steal information, or take control of an electronic device\u2014and have offered rewards to anyone who will provide them with exploits for U.S.-built software. \u00a0Among the exploits that Operation Zero\u00a0acquired were at least eight proprietary cyber tools, which were created for the exclusive use of the U.S. government and select allies and which were stolen from a U.S. company.\u00a0 Operation Zero then sold those stolen tools to at least one unauthorized user.<br \/>\n\u201cIf you steal U.S. trade secrets, we will hold you accountable,\u201d said\u00a0Secretary of the Treasury Scott Bessent.\u00a0 \u201cTreasury will continue to work alongside the rest of the Trump Administration to protect sensitive American intellectual property and safeguard our national security.\u201d<br \/>\nThis action coincides with an investigation by the Department of Justice and the Federal Bureau of Investigation of Peter Williams, an Australian national and a former employee of the aforementioned U.S. company who\u00a0pleaded guilty\u00a0on October 29, 2025, to two counts of theft of trade secrets.<br \/>\nWilliams stole several proprietary cyber tools from the company between 2022 and 2025 and sold them to Operation Zero\u00a0in exchange for millions of dollars paid in cryptocurrencies.<br \/>\nOFAC is designating Zelenyuk, Operation Zero, and the five associated individuals and entities pursuant to Executive Order (E.O.)\u00a013694, as further amended by E.O. 14306 (\u201cE.O. 13694, as further amended\u201d).\u00a0 In parallel with this action, the Department of State is sanctioning Zelenyuk, Operation Zero, and an affiliated UAE company,\u00a0Special Technology Services LLC FZ\u00a0(STS) pursuant to the Protecting American Intellectual Property Act (PAIPA).\u00a0 These are the first persons sanctioned under this law, which provides for sanctions against persons who have knowingly engaged in, or benefitted from, significant theft of trade secrets of United States persons, if the theft of such trade secrets is reasonably likely to result in, or has materially contributed to, a significant threat to the national security, foreign policy, or economic health or financial stability of the United States.\u00a0 Please refer to the\u00a0Department of State\u2019s press release\u00a0for more information about this action under PAIPA.<br \/>\nZELENYUK\u2019S ACQUISITION AND SALE OF CYBER TOOLS<br \/>\nRussian national\u00a0Zelenyuk,through his St. Petersburg, Russia-headquartered company\u00a0Operation Zero, has been active as an exploit broker since 2021.\u00a0 Operation Zero\u00a0has offered millions of dollars in bounties to cybersecurity researchers and others for the development or acquisition of exploits targeting commonly used software, including U.S.-built operating systems and encrypted messaging applications.\u00a0 Operation Zero\u00a0does not disclose the discovered exploits to the companies developing the affected software, and Operation Zero customers could use the tools to launch ransomware attacks or engage in other malign activities.\u00a0 In advertisements and other public-facing materials, Zelenyuk\u00a0and Operation Zero\u00a0have stated that they will only sell the exploits they acquire to customers from non-NATO countries.\u00a0 Zelenyuk, through Operation Zero, has sought to sell exploits to foreign intelligence agencies.\u00a0 Zelenyuk and Operation Zero have also sought to develop other cyber intelligence systems, including spyware and methods to extract personal identifying information and other sensitive data uploaded by users of artificial intelligence applications like large language models.\u00a0 Operation Zero has sought to recruit hackers to support its activities and develop business relationships with foreign intelligence agencies through use of social media.<br \/>\nOFAC is designating Zelenyuk\u00a0and Operation Zero\u00a0pursuant to E.O. 13694, as further amended, for being responsible for or complicit in, or having engaged in, directly or indirectly, cyber-enabled activities originating from, or directed by persons located, in whole or substantial part, outside the United States that are reasonably likely to result in, or have materially contributed to, a threat to the national security, foreign policy, or economic health or financial stability of the United States, and that have the purpose of or involve causing a misappropriation of funds or economic resources, intellectual property, proprietary or business confidential information, personal identifiers, or financial information for commercial or competitive advantage or private financial gain.<br \/>\nOPERATION ZERO\u2019S AFFILIATES<br \/>\nBeyond Zelenyuk and Operation Zero, OFAC is imposing sanctions on individuals and companies associated with them.\u00a0\u00a0Marina Evgenyevna Vasanovich\u00a0(Vasanovich) is Zelenyuk\u2019s assistant. STS is a UAE-based technology company controlled by Zelenyuk.\u00a0 OFAC is designating Vasanovich and STS pursuant to E.O. 13694, as further amended, for being owned or controlled by, or having acted or purported to act for or on behalf of, directly or indirectly, Zelenyuk.<br \/>\nOFAC is also designating\u00a0Azizjon Makhmudovich Mamashoyev\u00a0(Mamashoyev) and\u00a0Oleg Vyacheslavovich Kucherov\u00a0(Kucherov). \u00a0Kucherov is a Russian national and a suspected member of the Trickbot cybercrime gang.\u00a0OFAC previously designated members of the Trickbot group in\u00a0February 2023\u00a0and\u00a0September 2023.\u00a0 Trickbot, first identified in 2016, is a highly modular malware suite that allows the Trickbot cybercrime gang to conduct a variety of malicious cyber activities, including ransomware attacks against the U.S. government, as well as hospitals and healthcare centers across the United States.\u00a0 Kucherov and Mamashoyev have previously had work relationships with Operation Zero.\u00a0 OFAC is designating Mamashoyev and Kucherov pursuant to E.O. 13694, as further amended, for having materially assisted, sponsored, or provided financial, material, or technological support for, or goods and services to or in support of, Zelenyuk,<br \/>\nAdditionally, OFAC is sanctioning\u00a0Advance Security Solutions, another exploit brokerage firm that, like Operation Zero, offers bounties for exploits for U.S.-built software.\u00a0Advance Security Solutions is an offensive cybersecurity company created by Mamashoyev with operations in the UAE and Uzbekistan.\u00a0 OFAC is designating Advance Security Solutions pursuant to E.O. 13694, as further amended, for being owned or controlled by, or having acted or purported to act for or on behalf of, directly, Mamashoyev.<br \/>\nSANCTIONS IMPLICATIONS<br \/>\nAs a result of today\u2019s action, all property and interests in property of the designated or blocked persons described above that are in the United States or in the possession or control of U.S. persons are blocked and must be reported to OFAC.\u00a0 In addition, any entities that are owned, directly or indirectly, individually or in the aggregate, 50 percent or more by one or more blocked persons are also blocked.\u00a0 Unless authorized by OFAC, or exempt, OFAC\u2019s regulations generally prohibit all transactions by U.S. persons or within (or transiting) the United States that involve any property or interests in property of blocked persons.<br \/>\nViolations of U.S. sanctions may result in the imposition of civil or criminal penalties on U.S. and foreign persons. \u00a0OFAC may impose civil penalties for sanctions violations on a strict liability basis. \u00a0OFAC\u2019s\u00a0Economic Sanctions Enforcement Guidelines\u00a0provide more information regarding OFAC\u2019s enforcement of U.S. economic sanctions.\u00a0In addition, financial institutions and other persons may risk exposure to sanctions for engaging in certain transactions or activities involving designated or otherwise blocked persons. \u00a0The prohibitions include the making of any contribution or provision of funds, goods, or services by, to, or for the benefit of any designated or blocked person, or the receipt of any contribution or provision of funds, goods, or services from any such person.<br \/>\nThe power and integrity of OFAC sanctions derive not only from OFAC\u2019s ability to designate and add persons to the SDN List, but also from its willingness to remove persons from the SDN List consistent with the law.\u00a0 The ultimate goal of sanctions is not to punish, but to bring about a positive change in behavior.\u00a0 For information concerning the process for seeking removal from an OFAC list, including the SDN List, or to submit a request, please refer to OFAC\u2019s guidance on\u00a0Filing a Petition for Removal from an OFAC List.<br \/>\nClick here for more information on the individuals and entities designated or otherwise blocked today.<br \/>\nThe original announcement can be found here.<\/p>\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Treasury Imposes Cyber Related Sanctions on Russian and UAE Individuals, Entities https:\/\/www.hstoday.us\/subject-matter-areas\/cybersecurity\/treasury-imposes-cyber-related-sanctions-on-russian-and-uae-individuals-entities\/ Publish Date: 2026-02-25&#8230;<\/p>\n","protected":false},"author":1,"featured_media":190467,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/www.hstoday.us\/wp-content\/uploads\/2018\/05\/5242616796_a9437ed3de_o-scaled-1.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[20,24,31,32],"class_list":["post-190466","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-artificial-intelligence","tag-cybersecurity","tag-exploit","tag-malware"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/190466"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=190466"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/190466\/revisions"}],"predecessor-version":[{"id":190468,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/190466\/revisions\/190468"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/190467"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=190466"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=190466"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=190466"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}