He pleaded guilty to targeting U.S. companies with Ryuk malware that locked victims out of their computer systems, including a 2019 attack on an Oregon company that compromised at least 15 machines.