Russian pro basketball player gets the cuffs for allegedly being a member of ransomware gang — lawyer claims client "sucks at computers and is not even able to install an application"

News
By published

Is he a criminal mastermind or a hapless victim?

Daniil Kasatkin
(Image credit: Getty Images)

French authorities arrested Russian pro basketball player Daniil Kasatkin after arriving at Charles de Gaulle Airport outside of Paris on June 21. According to The Register, the Kasatkin is accused in the U.S. of conspiracy to commit computer fraud and computer fraud conspiracy, where he was allegedly a part of a ransomware gang between 2020 and 2022 that targeted around 900 companies and organizations, including two U.S. federal agencies. A French court decided on July 8 to keep him in detention while awaiting extradition proceedings, but the player denies all charges.

“He bought a second-hand computer. He did absolutely nothing — he is stunned,” Frédéric Bélot, Kasatkin’s lawyer, told the press. “He sucks at computers and is not even able to install an application. He didn’t touch anything in the computer: it was either hacked or the hacker sold it to him to act under the guise of another person.” Another lawyer told Russian publication Izvestia that Kasatkin is being tagged as a negotiator for the ransomware gang, but the player has an “ironclad alibi” against the accusation.

Kasatkin studied in the U.S. from 2016 to 2019, and even played for Penn State University from 2018 to 2019. He returned to Russia after that and eventually played in the MBA-MAI professional basketball team, which competes in the VTB United League and the Russian Basketball Cup. However, he left the team last July 3, more than a week after his arrest.

The Register says that ransomware negotiators are a specialized staff within a ransomware gang that talks with victims and gets them to pay up. Cybercriminals often look for targets and vulnerabilities and then use ransomware-as-a-service to exploit them. The operators of the latter usually have a negotiator, who talks with the victim and gets them to pay up, after which the original attacker receives a cut of the ransom.

Although the case against the Russian basketball player originated from the U.S., the Department of Justice hasn’t released a statement yet about his arrest. It currently has about 60 days to produce the necessary documents for France to proceed with the extradition proceedings.

Follow Tom's Hardware on Google News to get our up-to-date news, analysis, and reviews in your feeds. Make sure to click the Follow button.

Jowi Morales
Jowi Morales
Contributing Writer

Jowi Morales is a tech enthusiast with years of experience working in the industry. He’s been writing with several tech publications since 2021, where he’s been interested in tech hardware and consumer electronics.

3 Comments Comment from the forums
  • lmcnabney
    Russia doesn't prosecute ransomware syndicates. That is a money maker that brings in dollars to stimulate their economy. This person obviously got sideways with somebody important.
    Reply
  • 93QSD5
    lmcnabney said:
    Russia doesn't prosecute ransomware syndicates. That is a money maker that brings in dollars to stimulate their economy. This person obviously got sideways with somebody important.
    Only the west prosecutes cyber criminals. Matter of fact, you aren't even allow strike back (hackbacks are illegal in most places).

    (Except if you're NVIDIA, then the feds will gladly turn a blind eye for breaching and executing ransomware on the attackers machine).
    Barely a dime is invested in cyber security because there are no consequences.

    The politicans don't care (let alone understand what a computer is).
    The people care even less than their elected politicans. Neither about critical or personal data.

    Or in computer science terms: Garbage in, garbage out.
    Meanwhile Russia will pay this gang and (if he's involved) a fat paycheck & infrastructure upgrades as long as the targets aren't local.

    Russian ransomware groups practically always seem to check for indication of "russianness" (be it address or keyboard/language settings ≠ belarussian/russian) on the victim's machine before exploitation.
    Reply
  • 3ogdy
    That Russian should get the cuffs for other things. Like indifference and ignorance...
    Moving on... doesn't that mean, Kaspersky might be facing the same issues?
    Reply