The Ransomware ‘Locksmith’: Russian Access Broker Aleksei Volkov Sentenced to 7 Years for $9M Cyber Heist

A 26-year-old Russian national has been sentenced to 81 months in prison for his pivotal role in a string of devastating cyberattacks against U.S. organizations. Aleksei Volkov, of St. Petersburg, was sentenced in the Southern District of Indiana after being extradited from Italy to face charges that highlight the specialized, “gig-economy” nature of modern cybercrime.

Volkov functioned as an “initial access broker” (IAB)—a specialized role that serves as the starting point for some of the world’s most expensive digital extortions.

According to the Department of Justice, Volkov’s activities weren’t just technical experiments; they were high-stakes financial crimes. His work facilitated dozens of ransomware attacks across the United States, including those carried out by the notorious Yanluowang ransomware group.

“Volkov facilitated dozens of ransomware attacks throughout the United States, causing over $9 million in actual losses and over $24 million in intended losses,” the press release stated. While the criminals successfully walked away with millions in cryptocurrency, the “intended” damage—the amount they demanded from victims—was nearly triple that amount.

As an IAB, Volkov didn’t necessarily pull the trigger on the ransomware himself. Instead, he acted as the scout and the locksmith. According to court documents, he specialized in “gaining unauthorized access to computer networks and systems of corporations and organizations and selling that access to other cyber threat actors.”

The process followed a cold, professional logic:

1. Vulnerability Hunting: Volkov found weaknesses in corporate networks.
2. Unauthorized Entry: He identified ways to enter those systems without permission.
3. The Sale: He sold that illicit access to co-conspirators.
4. The Payday: Once the co-conspirators deployed malware and encrypted the victim’s data, Volkov “received a share of the money” if the ransom was paid.

After being indicted in both Indiana and Pennsylvania, he was tracked down by police in Rome, Italy. Following his arrest, he was extradited to the United States, where the two cases were consolidated.

On November 25, 2025, Volkov pleaded guilty to a litany of charges, including:

• Unlawful transfer of identification.
• Trafficking in access information.
• Access device fraud.
• Aggravated identity theft.
• Conspiracy to commit computer fraud and money laundering.

As part of his sentencing, Volkov is not only facing nearly seven years behind bars but is also being stripped of the financial fruits of his crimes. He has agreed to pay full restitution to his victims, a total of at least $9,167,198.19, and must forfeit the specialized equipment he used to bypass the security of U.S. companies.