Global Sting Dismantles $390M AudiA6 Crypto Laundering Operation

A global legislation enforcement operation involving 11 international locations has dismantled AudiA6, a crypto laundering platform that processed over €336 million ($390 million) in illicit funds between 2022 and 2025. The platform, which catered to ransomware teams, was seized alongside its related darkish net discussion board, ‘Dark2Web.’

Authorities arrested two directors—Ruslan Igorevich Tkachuk and Alexander Vladimirovich Ledenev—in Georgia on Wednesday, in response to the European Union Company for Felony Justice Cooperation (Eurojust). The sting operation additionally resulted within the seizure of 25 domains, greater than 30 servers, $900,000 in frozen cryptocurrency, and 80 autos tied to the operation.

AudiA6 operated as a “mixer-as-a-service,” providing to obfuscate the origin of stolen crypto for a payment of three% to 10%, enabling criminals to ‘clear’ funds inside an hour. The platform was closely utilized by ransomware syndicates, processing roughly 10,333 BTC since its launch in 2021, in response to blockchain analytics agency Chainalysis. On the time of the transactions, this was valued at round $389 million.

Pretend Identities and Cash Mule Accounts

The laundering operation relied on 1000’s of fraudulent accounts created utilizing stolen or bought identities. Investigators uncovered over 6,000 pretend Know Your Buyer (KYC) information tied to “cash mule” accounts. These accounts had been reportedly managed by Russian-speaking intermediaries particularly recruited to launder funds via crypto exchanges.

AudiA6’s infrastructure wasn’t restricted to crypto mixing. The group additionally operated ‘Dark2Web,’ a market discussion board promoting illicit companies and facilitating connections between world cybercriminals. Each platforms’ domains now show legislation enforcement seizure banners.

World Effort to Fight Ransomware

The takedown of AudiA6 represents one of the crucial vital legislation enforcement actions in opposition to crypto-fueled ransomware operations up to now. Companies from the US, United Kingdom, Australia, France, Japan, and different nations coordinated the investigation via Eurojust and Europol.

Ransomware assaults have surged in recent times, with the U.S. accounting for almost 65% of world incidents in Q1 2026, in response to cybersecurity companies Emsisoft and Examine Level Analysis. AudiA6 was reportedly concerned in laundering ransom funds, together with funds extorted from an Australian enterprise in 2024.

“The ransomware ecosystem is consolidating round fewer, extra dominant operators,” said Examine Level Analysis in Might. The highest 10 ransomware teams had been accountable for 71% of all recorded incidents in early 2026, highlighting the continued problem of dismantling these felony networks.

Implications for Crypto Regulation

The AudiA6 case underscores the rising sophistication of cybercriminal infrastructure and the position of crypto in facilitating illicit exercise. By focusing on platforms like AudiA6, legislation enforcement sends a transparent sign to dangerous actors that regulatory and investigative capabilities are catching up.

For reliable crypto companies, this serves as a reminder of the significance of strong compliance measures, notably round KYC and anti-money laundering (AML) protocols. Platforms that fail to implement these requirements danger changing into instruments for felony enterprises—and targets for regulatory motion.

With ransomware remaining a persistent risk and crypto mixers beneath growing scrutiny, additional legislation enforcement actions on this house seem inevitable. Market individuals ought to monitor developments carefully, as regulatory shifts and enforcement priorities may reshape the operational panorama for crypto companies.

Picture supply: Shutterstock