Source: United States Department of Justice Criminal Division
Ocala, Florida – Yoandris Jose Ruiz Bello (32, Venezuela) has been charged by federal indictment with attempted production of child sexual abuse material. If convicted, Ruiz Bello faces a minimum penalty of 15 years, up to 30 years, in federal prison. U.S. Attorney Gregory W. Kehoe made the announcement.
Source: United States Department of Justice Criminal Division
Shana Gaviola, 39, of Fresno, was sentenced today by U.S. District Judge John C. Coughenour to three years in prison for interstate violation of a protection order for causing her estranged teenage son to be taken against his will and transported from California to Missouri.
Source: United States Department of Justice Criminal Division
Seattle – A 25-year-old Seattle man was sentenced today in U.S. District Court in Seattle to more than 27 years in prison for multiple counts of carjacking and using a firearm in a crime of violence, announced First Assistant U.S. Attorney Charles Neil Floyd.
Source: United States Department of Justice Criminal Division
Earlier today, in federal court in Brooklyn, Jay Bryant, also known as “Bradshaw Dewitt,” “Jason Robinson,” “Morgan Bryant,” “Deshawn Sadler,” “Jay Sadler” and “Big Jay” pleaded guilty to the October 30, 2002, firearm-related murder of Jason Mizell, also known as “Jam Master Jay,” a member of the famed hip hop group Run-DMC. The plea proceeding was held before United States Magistrate Judge Peggy Cross-Goldenberg. When sentenced, Bryant faces a mandatory minimum term of 15 years in prison and up to 20 years in prison. This sentence also applies to separate narcotics trafficking and firearms charges to which Bryant already pleaded guilty and that were accepted by United States District Judge Brian M. Cogan on December 2, 2023.
Source: United States Department of Justice Criminal Division
Baltimore, Maryland – A Washington, D.C., woman learned her fate in federal court today, in connection with a multi-million-dollar money laundering scheme. Judge Matthew J. Maddox sentenced Lorena Perez Herrera, 29, to two years in prison, followed by one year of supervised release, for conspiring to engage in a large, multi-member, money laundering conspiracy.
Source: United States Army
Back to
AGADIR, Morocco – U.S. Africa Command’s largest annual joint exercise, African Lion 26, officially begins today. The exercise is hosted across four nations including Ghana, Morocco, Senegal and Tunisia. The activities in Morocco will include approximately 5,000 personnel from over 40 countries and more than 30 U.S.-based industry partners validating future warfare capabilities across multiple locations within the country from 27 April to May 8, 2026.
Executed by U.S. Army Southern European Task Force, Africa (SETAF-AF), the event is designed to strengthen the collective security capabilities of the United States, African nations and global allies. The training stress-tests the U.S. joint force and partner nations’ ability to execute rapid deployments and operate under multi-domain threat conditions.
AL26 is U.S. Africa Command’s largest annual joint exercise, designed to strengthen collective security capabilities of the U.S., African nations and global allies. Led by U.S. Army Southern European Task Force, Africa (SETAF-AF) from April 20 to May 8, 2026, and hosted in Ghana, Morocco, Senegal, and Tunisia, AL26 involves over 5,600 civilian and military personnel from more than 40 nations, using innovation to drive partner-led regional security. (U.S. Air Force photo by Airman 1st Class Alexandra Dale)
VIEW ORIGINAL“African Lion 26 reflects our continued bilateral commitment to regional security and stability,” said Duke Buchan III, U.S. Ambassador to Morocco. “As our nations celebrate 250 years of friendship, this enduring diplomatic and military partnership continues to build capable, interoperable forces and strengthen security across the region.”
The exercise features a comprehensive suite of training events designed to test the full spectrum of military operations.
Training events include multinational academics, command field exercise, combined armed live-fire exercises, chemical, biological, radiological, nuclear, and explosives training, special operations training, air and maritime operations, and humanitarian civic assistance.
The exercise integrates more than 30 U.S.-based vendors testing emerging capabilities across mission command, deep attack, defense-in-depth, and counter-attack systems. Technologies validated include autonomous systems, artificial intelligence-enabled command and control, counter-unmanned aircraft systems, and advanced intelligence, surveillance, and reconnaissance platforms.
“African Lion 2026 is a critical demonstration of peace through strength in action,” said U.S. Air Force General Dagvin Anderson, commander of U.S. Africa Command. “We are working to prevent Islamic terrorists in Africa from using regional safe heavens to strike the U.S. Homeland, and empowering allies and partners to lead efforts to degrade and destroy these organizations.”
The exercise underscores the enduring U.S. commitment to its African partners, reinforcing the necessary coalition network required to deter regional threats.
Key supporting activities throughout the exercise demonstrate the breadth of U.S.-Morocco military cooperation.
The Utah National Guard will conduct humanitarian civic assistance treating an estimated 20,000 patients over 11 days through the State Partnership Program. The Utah National Guard has maintained a State Partnership Program with Morocco since 2003.
The exercise validates decision dominance by leveraging artificial intelligence-enabled tools across operational targeting and coalition command to accelerate the sensor-to-shooter cycle. The mission partner environment network bridges classified and unclassified data systems, ensuring U.S., NATO and Moroccan forces share a common operating picture.
African Lion 26 supports U.S. Africa Command’s objectives of empowering African partners to achieve operational independence and building the coalition networks necessary to counter transnational threats.
About African Lion
African Lion 2026 is U.S. Africa Command’s largest annual joint exercise, designed to strengthen collective security capabilities of the U.S., African nations and global allies. Co-led by U.S. Army Southern European Task Force, Africa (SETAF-AF) from April 20 to May 8, 2026, and hosted in Ghana, Morocco, Senegal and Tunisia, AL26 involves over 5,600 personnel from more than 40 nations, using innovation to drive partner-led regional security.
African Lion content can be found on the Defense Visual Information Distribution Service (DVIDS).
About SETAF-AF
U.S. Army Southern European Task Force, Africa (SETAF-AF) prepares Army forces, executes crisis response, enables strategic competition and strengthens partners to achieve U.S. Army Europe and Africa and U.S. Africa Command campaign objectives.
Follow SETAF-AF on: Facebook, Twitter, Instagram, YouTube, LinkedIn & DVIDS
Source: United States Department of Justice Criminal Division
Note: View the indictment in U.S. v. Xu Zewei et al. here.
Xu Zewei (徐泽伟), 34, of the People’s Republic of China was extradited to the United States this weekend and appeared today in U.S. District Court in Houston on a nine-count indictment related to his involvement in computer intrusions between February 2020 and June 2021. Certain of those computer intrusions allegedly are part of the HAFNIUM computer intrusion campaign that compromised thousands of computers worldwide, including in the United States. Other intrusions targeted U.S. COVID-19 research during the height of the pandemic. Xu is charged along with Zhang Yu (张宇), 44, who is also a PRC national.
According to court documents, officers of the PRC’s Ministry of State Security’s (MSS) Shanghai State Security Bureau (SSSB) directed Xu to conduct this hacking. The MSS and SSSB are PRC intelligence services responsible for PRC’s domestic counterintelligence, non-military foreign intelligence, and aspects of the PRC’s political and domestic security. When Xu conducted the computer intrusions, he allegedly worked for a company named Shanghai Powerock Network Co. Ltd. (Powerock). Powerock was one of many “enabling” companies in the PRC that conducted hacking for the PRC government.
“The United States is committed to pursuing hackers who steal information from U.S. businesses and universities and threaten our cybersecurity,” said Assistant Attorney General for National Security John A. Eisenberg. “I commend the prosecutors and investigators who have worked hard and sought justice for years in this investigation, and we look forward to proving our case in court.”
“Today, Xu Zewei will stand in a federal courtroom to answer for crimes that struck at the heart of American science and security — allegedly stealing COVID-19 research from our universities when the world needed it most,” said Acting U.S. Attorney John G.E. Marck for the Southern District of Texas. “We have pursued this moment across years and continents, and the message this office sends today is the same one we sent when we first unsealed this indictment: we will work to protect the American people.”
“The extradition of Xu Zewei demonstrates the FBI’s reach extends well beyond U.S. borders,” said Assistant Director Brett Leatherman of the FBI’s Cyber Division. “Xu will now answer for his alleged role in HAFNIUM, a group responsible for a vast intrusion campaign directed by China’s Ministry of State Security that compromised more than 12,700 U.S. organizations. He is one of many contractors the Chinese government uses to obscure its hand in cyber operations, and others who do the same face the same risk. The FBI thanks our Italian law enforcement colleagues, especially the Polizia Postale, whose partnership led to Xu’s arrest in Milan and his extradition to the United States.”
According to court documents, in early 2020, Xu and his co-conspirators hacked and otherwise targeted U.S.-based universities, immunologists, and virologists conducting research into COVID‑19 vaccines, treatment, and testing. Xu and others reported their activities to officers in the SSSB who were supervising and directing the hacking activities. For example, on or about Feb. 19, 2020, Xu provided an SSSB officer with confirmation that he had compromised the network of a research university located in the Southern District of Texas. On or about Feb. 22, 2020, the SSSB officer directed Xu to target and access specific email accounts (mailboxes) belonging to virologists and immunologists engaged in COVID-19 research for the university. Xu later confirmed for the SSSB officer that he acquired the contents of the researchers’ mailboxes.
The charges further allege that beginning in late 2020, Xu and his co-conspirators exploited certain vulnerabilities in Microsoft Exchange Server, a widely-used Microsoft product for sending, receiving, and storing email messages. Their exploitation of Microsoft Exchange Server was at the forefront of a massive campaign targeting thousands of computers worldwide and known publicly as “HAFNIUM.” In March 2021, Microsoft publicly disclosed the intrusion campaign by state-sponsored hackers operating out of China. Throughout March 2021, Microsoft and other industry partners released detection tools, patches, and other information to assist victim entities in identifying and mitigating this cyber incident. Additionally, the FBI and the Cybersecurity and Infrastructure Security Agency released a Joint Advisory on Compromise of Microsoft Exchange Server on March 10, 2021. However, by the end of March 2021, hundreds of web shells remained on certain U.S.-based computers running Microsoft Exchange Server software. In April 2021, the Justice Department announced a court-authorized operation to remediate hundreds of computers in the United States made vulnerable by HAFNIUM actors. In July 2021, the United States and foreign partners attributed the HAFNIUM campaign to the PRC’s MSS.
Among the victims of Xu’s alleged exploitation of Microsoft Exchange Server were another university located in the Southern District of Texas and a law firm with offices worldwide, including in Washington, D.C. After exploiting computers running Microsoft Exchange Server, Xu and his co-conspirators installed web shells on them to enable their remote administration. The indictment alleges that these web shells were specific to HAFNIUM actors at the time. As with the earlier COVID-19 research intrusions, Xu and Zhang worked together on the HAFNIUM intrusions, under the supervision and direction of SSSB officers. For example, on or about Jan. 30, 2021, Xu confirmed to Zhang that he had compromised the other university’s network. Later, on or about Feb. 28, 2021, Xu updated a SSSB officer on his successful intrusions. This SSSB officer then directed Xu to obtain a list of other, successful intrusions from a second SSSB officer. Unauthorized access to the law firm’s network allowed Xu and his co-conspirators to steal information from mailboxes and search them for information regarding specific U.S. policy makers and government agencies. Their search terms included “Chinese sources,” “MSS,” and “HongKong.”
As described in the July 2025 announcement of charges against Xu, the PRC uses an extensive network of private companies and contractors in China to hack and steal information in a manner that obscured the PRC government’s involvement. Operating from their safe haven and motivated by profit, this network of private companies and contractors in China cast a wide net to identify vulnerable computers, exploit those computers, and then identify information that it could sell directly or indirectly to the PRC government. This largely indiscriminate approach results in more victims in the United States and elsewhere, more systems worldwide left vulnerable to future exploitation by third parties, and more stolen information, often of no interest to the PRC government and, therefore, sold to other third parties.
Xu is charged with conspiracy to commit wire fraud and two counts of wire fraud, which carries a maximum penalty of 20 years in prison for each count; conspiracy to cause damage to and obtain information by unauthorized access to protected computers, to commit wire fraud, and to commit identity theft, which carries a maximum penalty of five years in prison; two counts of obtaining information by unauthorized access to protected computers, which carries a maximum penalty of five years in prison; two counts of intentional damage to a protected computer, which carries a maximum penalty of 10 years in prison; and aggravated identity theft, which carries a maximum penalty of two years in prison. Zhang Yu, remains at large. Anyone with information about his whereabouts is asked to contact the FBI at 1-800-CALL-FBI (1-800-225-5324).
The FBI’s Houston Field Office is investigating the case.
Assistant U.S. Attorney Mark McIntyre for the Southern District of Texas and Deputy Chief Matthew Anzaldi of the National Security Division’s National Security Cyber Section are prosecuting the case. The U.S. Department of Justice’s Office of International Affairs secured the arrest and extradition from Italy of Xu. The United States thanks the Government of Italy for its assistance extraditing Xu to the United States, including the Cyber Division of the Italian National Police for its valuable assistance.
An indictment is merely an allegation. All defendants are presumed innocent until proven guilty beyond a reasonable doubt in a court of law.
Source: United States Department of Justice Criminal Division
NEW ORLEANS – STEVE BANKS (“BANKS”), age 50, of New Orleans, pled guilty on April 22, 2026 before United States District Judge Jane Triche Milazzo to violations of the Federal Controlled Substances Act and the Federal Gun Control Act, announced U.S. Attorney David I. Courcelle.
Source: United States Department of Justice Criminal Division
SAN DIEGO – Alleged Guatemalan drug kingpin Eugenio Dario Molina-Lopez, aka “Don Dario,” who is accused of being the leader of a transnational criminal organization known as Los Huistas, has been arrested in San Diego. Molina-Lopez made his initial appearance in federal court on Friday, April 24, 2026. Los Huistas is a drug trafficking organization primarily based in the Huehuetenango region of Northwest Guatemala that borders Mexico and is engaged in a massive cocaine trafficking operation. Molina-Lopez was charged as part of Operation Guerrilla Unit, a multi-year investigation led by Homeland Security Investigations (HSI), HSI Attaché Guatemala City, Guatemala, and the United States Attorney’s Office in San Diego. The investigation targeted Molina-Lopez, the Los Huistas organization, and its suppliers. High-level cocaine traffickers were targeted in a massive probe involving multiple countries, multiple law enforcement agencies around the United States, and a number of federal districts.
Source: United States Army
WIESBADEN, Germany — U.S. Army Europe and Africa kicks off exercise Sword 26 today. This series of exercises will run through the end of May 2026 in eight countries across NATO’s Eastern Flank, replacing the DEFENDER exercise series.
Sword 26 will see U.S. and NATO forces conducting operations across eight countries in the High North, the Baltic region and in Poland. The exercise focuses on operationalizing the Eastern Flank Deterrence Initiative, a transformational concept designed for NATO and U.S. forces to execute NATO’s integrated defense plans in the land domain.
“Sword 26 tests our lethality and ability to harness data and AI-enabled warfare at scale to operate with NATO Allies. It’s the application of Army Transformation to fight NATO’s regional plans across all domains in the High North, Baltic region, and Poland,” saidGen. Christopher Donahue,commanding general, U.S. Army Europe and Africa.
The exercise series includes three linked exercises: Saber Strike, Immediate Response, and Swift Response. Each plays a unique role in validating Allied and U.S. land forces to execute NATO’s plans and advance the EFDI concept. Saber Strike focuses on rapid overland deployment in the Baltic region, Immediate Response showcases sustainment and combat power in the High North, and Swift Response demonstrates the deployment of specialized equipment from the U.S. and within the theater.
The DEFENDER exercise, an acronym for Dynamic Employment of Forces to Europe for NATO Deterrence and Enhanced Readiness, focused on the deployment of units from the U.S. into Europe from 2020-2025, testing USAREUR-AF’s ability to receive and integrate forces. Sword shifts the focus to validating NATO’s regional plans and advancing the EFDI. This change reflects the U.S. Army’s emphasis on warfighting, modernization, and readiness, consistent with NATO’s transformational priorities.
For U.S. forces, it’s a platform for integrating cutting-edge capabilities, such as AI-enabled command and control systems, and multi-domain operations.
“Sword 26 allows us to test and train a number of efforts,” said Col. James Egan, USAREUR-AF Director of Training and Exercises. “Our Allies are stepping up to meet NATO’s pledge to invest in formations and capabilities, from setting the network to integrating sensors and unmanned systems, this exercise puts it all together to command and control forces in the field, across the Eastern Flank.”
With approximately 15,500 participants, Sword demonstrates the ability to operate as a unified, lethal force across all domains. As NATO continues to adapt to emerging threats, Sword 26 serves as a powerful example of how the U.S. Army and its Allies are working together to deter adversaries across Europe’s Northern and Eastern flanks.
For more information on Sword and related exercises, go to www.europeafrica.army.mil/SWORD.