The U.S. Justice Department has announced two indictments against Ukrainian national Victoria Eduardovna Dubranova, also known as Vika, Tory, and SovaSonya, for her alleged involvement in major cyberattacks targeting critical infrastructure globally.
Authorities say she carried out these operations in support of Russia’s geopolitical goals. Dubranova was extradited to the United States earlier this year on charges connected to the cyber group CyberArmyofRussia_Reborn, and she has now been arraigned on a second case involving the group NoName057(16). She has pleaded not guilty in both cases, and trials are scheduled for February and April of 2026.
According to prosecutors, both CARR and NoName received financial and operational support from the Russian government. This backing allowed CARR to pay for cybercriminal tools, including distributed denial-of-service services, while NoName operated a state-sanctioned project supported by a Russian technology organization created under a presidential order. Officials say these groups launched large-scale campaigns intended to disrupt essential services, influence geopolitical tensions, and target institutions connected to NATO and U.S. interests. Senior U.S. officials described these actions as dangerous attempts to use civilians as cover for state-directed cyber operations.
Court documents reveal that CARR, also known as Z-Pentest, conducted hundreds of attacks worldwide. Victims included public water systems in several U.S. states, where intrusions damaged controls and caused large quantities of drinking water to spill. The group was also responsible for a 2024 attack on a meat processing facility in Los Angeles that spoiled thousands of pounds of meat and triggered an ammonia leak. CARR has also targeted U.S. election infrastructure and websites linked to nuclear regulatory agencies. Prosecutors say the group operated with guidance from individuals linked to the GRU and had more than 100 active members and tens of thousands of online followers. Dubranova faces multiple charges in this case, including conspiracy to damage protected computers and identity theft, carrying a maximum possible sentence of 27 years.
The second case centers around NoName057(16), a covert program involving employees of the Center for the Study and Network Monitoring of the Youth Environment, a Russian organization created to monitor online safety for young people. Prosecutors say NoName carried out hundreds of attacks on global targets, including government agencies and major transportation hubs.
The group used its own DDoS tool, known as DDoSia, which relied on network systems built by CISM employees. NoName recruited volunteers worldwide to download the tool and participate in attacks, offering cryptocurrency payments to top contributors and publishing leaderboards showing who launched the most attacks. Dubranova faces one charge in this case with a maximum possible penalty of five years.
If this article helped you, please consider supporting our work. Every small contribution keeps Abijita.com independent and running.
