Latest LockBit news

Cisco warns of VPN zero-day exploited by ransomware gangs

Cisco is warning of a CVE-2023-20269 zero-day vulnerability in its Cisco Adaptive Security Appliance (ASA) and Cisco Firepower Threat Defense (FTD) that is actively exploited by ransomware operations to gain initial access to corporate networks.
- Bill Toulas
- September 08, 2023
- 09:32 AM
- 0
Hacking campaign bruteforces Cisco VPNs to breach networks

Hackers are targeting Cisco Adaptive Security Appliance (ASA) SSL VPNs in credential stuffing and brute-force attacks that take advantage of lapses in security defenses, such as not enforcing multi-factor authentication (MFA).
- Sergiu Gatlan
- August 30, 2023
- 12:00 PM
- 0
Spain warns of LockBit Locker ransomware phishing attacks

The National Police of Spain is warning of an ongoing 'LockBit Locker' ransomware campaign targeting architecture companies in the country through phishing emails.
- Bill Toulas
- August 28, 2023
- 02:25 PM
- 0
The Week in Ransomware - August 18th 2023 - LockBit on Thin Ice

While there was quite a bit of ransomware news this week, the highlighted story was the release of Jon DiMaggio's third article in the Ransomware Diaries series, with the focus of this article on the LockBit ransomware operation.
- Lawrence Abrams
- August 18, 2023
- 05:07 PM
- 0
The Week in Ransomware - June 30th 2023 - Mistaken Identity

A case of mistaken identity and further MOVEit Transfer data breaches continue dominated the ransomware news cycle this week.
- Lawrence Abrams
- June 30, 2023
- 05:33 PM
- 0
TSMC denies LockBit hack as ransomware gang demands $70 million

Chipmaking giant TSMC (Taiwan Semiconductor Manufacturing Company) denied being hacked after the LockBit ransomware gang demanded $70 million not to release stolen data.
- Bill Toulas
- June 30, 2023
- 09:45 AM
- 1
Suspected LockBit ransomware affiliate arrested, charged in US

Russian national Ruslan Magomedovich Astamirov was arrested in Arizona and charged by the U.S. Justice Department for allegedly deploying LockBit ransomware on the networks of victims in the United States and abroad.
- Sergiu Gatlan
- June 15, 2023
- 01:33 PM
- 1
CISA: LockBit ransomware extorted $91 million in 1,700 U.S. attacks

U.S. and international cybersecurity authorities said in a joint LockBit ransomware advisory that the gang successfully extorted roughly $91 million following approximately 1,700 attacks against U.S. organizations since 2020.
- Sergiu Gatlan
- June 14, 2023
- 11:38 AM
- 1
MCNA Dental data breach impacts 8.9 million people after ransomware attack

Managed Care of North America (MCNA) Dental has published a data breach notification on its website, informing almost 9 million patients that their personal data were compromised.
- Bill Toulas
- May 29, 2023
- 09:49 AM
- 1
The Week in Ransomware - April 28th 2023 - Clop at it again

It has been a very quiet week for ransomware news, with only a few reports released and not much info about cyberattacks. An item of interest was Microsoft linking the recent PaperCut server attacks on the Clop and LockBit ransomware operation.
- Lawrence Abrams
- April 28, 2023
- 02:42 PM
- 0
Microsoft: Clop and LockBit ransomware behind PaperCut server hacks

Microsoft has attributed recent attacks on PaperCut servers to the Clop and LockBit ransomware operations, which used the vulnerabilities to steal corporate data.
- Lawrence Abrams
- April 26, 2023
- 07:28 PM
- 0
The Week in Ransomware - April 21st 2023 - Macs in the Crosshairs

A lot of news broke this week related to ransomware, with the discovery of LockBit testing macOS encryptors to an outage on NCR, causing massive headaches for restaurants.
- Lawrence Abrams
- April 21, 2023
- 06:39 PM
- 0
Ransomware gangs abuse Process Explorer driver to kill security software

Threat actors use a new hacking tool dubbed AuKill to disable Endpoint Detection & Response (EDR) Software on targets' systems before deploying backdoors and ransomware in Bring Your Own Vulnerable Driver (BYOVD) attacks.
- Sergiu Gatlan
- April 19, 2023
- 01:46 PM
- 5
LockBit ransomware encryptors found targeting Mac devices

The LockBit ransomware gang has created encryptors targeting Macs for the first time, likely becoming the first major ransomware operation to ever specifically target macOS.
- Lawrence Abrams
- April 16, 2023
- 01:31 PM
- 7
Darktrace: Investigation found no evidence of LockBit breach

Cybersecurity firm Darktrace says it found no evidence that the LockBit ransomware gang breached its network after the group added an entry to their dark web leak platform, implying that they stole data from the company's systems.
- Sergiu Gatlan
- April 14, 2023
- 01:29 PM
- 1
The Week in Ransomware - March 24th 2023 - Clop overload

This week's news has been dominated by the Clop ransomware gang extorting companies whose GoAnywhere services were breached using a zero-day vulnerability.
- Lawrence Abrams
- March 24, 2023
- 05:32 PM
- 0
LockBit ransomware gang now also claims City of Oakland breach

Another ransomware operation, the LockBit gang, now threatens to leak what it describes as files stolen from the City of Oakland's systems.
- Sergiu Gatlan
- March 21, 2023
- 12:57 PM
- 0
LockBit ransomware claims Essendant attack, company says “network outage”

LockBit ransomware has claimed a cyber attack on Essendant, a wholesale distributer of office products after a "significant" and ongoing outage knocked the company's operations offline.
- Ax Sharma
- March 15, 2023
- 02:50 PM
- 0
LA housing authority discloses data breach after ransomware attack

The Housing Authority of the City of Los Angeles (HACLA) is warning of a "data security event" after the LockBit ransomware gang targeted the organization and leaked data stolen in the attack.
- Bill Toulas
- March 13, 2023
- 03:51 PM
- 0
The Week in Ransomware - February 10th 2023 - Clop's Back

From ongoing attacks targeting ESXi servers to sanctions on Conti/TrickBot members, it has been quite a busy week regarding ransomware.
- Lawrence Abrams
- February 10, 2023
- 06:24 PM
- 0