The LockBit ransomware group, notorious for its cybercriminal activities, has reportedly suffered a setback as one of its dark web sites was defaced. The incident revealed a message urging people against crime, along with leaked data including victim interactions, Bitcoin wallet details, and attack specifics. Security experts, including Christiaan Beek from Rapid7, noted the authenticity of these leaks, which document aggressive ransom negotiations. The group has a significant history of targeting diverse sectors globally, amassing over $500 million in ransom payments. The hacker's identity remains unknown, hinting at evolving dynamics in cybercrime.
A new message on the site reads: "Don't do crime CRIME IS BAD xoxo from Prague", with a link to a MySQL database containing chats between the hackers and their victims.
Looking at the leaked chats, we can see how aggressive LockBit was during ransom negotiations. In some cases, victims were pressured to pay just a few thousand dollars.
The leak was spotted by threat actor Rey, who has apparently been in contact with the group. LockBit claims that neither source code nor decryptors were stolen.
LockBit has attacked more than 2,500 victims in at least 120 countries, including multinational corporations and critical infrastructure, taking at least $500 million in ransom payments.
Collection
[
|
...
]