EU imposes sanctions on 9 Russians and 4 companies over cyberattacks

The EU has imposed sanctions on nine Russian nationals and four companies considered to be involved in cyberattacks against the European Union, individual member states and partners.
Source: a press release by the Council of the EU, as reported by European Pravda
Details: On 13 July, the Council of the EU decided to impose restrictions on nine Russians and four companies classified as part of the Russian "cyber ecosystem" used to conduct attacks against the EU, member states and international partners.
The list includes provider Media Land LLC and its owner Alexander Volosovik. Media Land LLC is considered linked to a number of cyberattacks in EU countries and beyond – including through ransomware and phishing attacks against critical infrastructure – that caused significant financial damage. The related company ML.Cloud was also sanctioned.
Among the included entities is the pro-Russian hacker group Z-Pentest, considered responsible for attacks on critical infrastructure, including in the energy and water supply sectors – among them, an attack on a Danish water supply company in December 2024. The group's leader Yuliya Pankratova and chief hacker Denis Degtyarenko appear on the list. Both are also named as part of the hacker group CARR (Cyber Army of Russia Reborn), which has systematically conducted DDoS attacks since 2022 against countries supporting Ukraine and is considered linked to the former GRU (now renamed the Main Directorate of the General Staff of the Russian Armed Forces).
Sanctioned are Impuls LLC and its owner Evgeniy Bashev, identified as a representative of Department 29155 of that agency, as well as Russians Maksim Voronin, Maksim Gordienko and Vitaly Kovalov. The first two are considered developers and distributors of the malicious LummaC2 programme; the last is considered linked to the development of the Trickbot and Conti viruses.
"These sanctions are taken in close coordination with the United Kingdom. This marks the first time that the EU and the UK have adopted sanctions simultaneously under their respective cyber sanctions' regimes, underscoring their shared commitment to tackling Russian malicious cyber activities through coordinated action," the announcement states.
Separate sanctions were also imposed against those involved in destabilisation activities. The list includes Ivan Kasyanenko, deputy commander of the Special Operations Service of the Main Directorate of the General Staff of the Russian Armed Forces (former GRU), as the primary person responsible for Department 29155 activities relating to Afghanistan – including, allegedly, facilitating attacks on coalition representatives for financial reward.
He is also considered a coordinator of activities linked to the poisoning of Sergei and Yuliia Skripal in Salisbury and other covert Russian intelligence operations in Europe, the integration of Wagner fighters into Africa, and military-technical cooperation involving Iran.
Department 29155 is considered responsible for cyberattacks against EU countries and partners, including Ukraine.
In addition, the EU imposed sanctions against those involved in torture and abuse of Ukrainian prisoners of war and civilian hostages – including at the notorious Tahanroh remand prison and Olenivka in occupied Donetsk Oblast.
The EU also imposed sanctions on companies that help Russia carry out surveillance of the population.
EU ambassadors will meet in an extraordinary session on 14 July to approve the 21st package of sanctions against Russia.
Subscribe on Patreon to back our journalism long-term.