LockBit Resurrection

An international coalition of police agencies, including the US Federal Bureau of Investigation and the British National Crime Agency, have resurrected the Dark Web site of the notorious LockBit ransomware gang, which they disrupted and took offline earlier this year.  

In a related development the alleged leader of what was once the world’s largest ransomware outfit, LockBit, has been named as Russian national Dmitry Khoroshev by the UK’s National Crime Agency (NCA).

What was once LockBit’s official Dark Net site reappeared online with new posts that suggest the authorities are planning to soon release new information about the hackers. The posts have titles such as “Who is LockBitSupp?” “What have we learnt,” “More LB hackers exposed,” and “What have we been doing?”

Since the authorities announced what they called “Operation Cronos” against LockBit in February, the group’s leader, now identified as Dmitry Khoroshev and known under the pseudonym of has been taunting law enforcement claiming that its the effect of its takedown is exaggerated.

A law enforcement coalition that included the UK’s National Crime Agency, the US Federal Bureau of Investigation, and forces from Germany, Finland, France, Japan published that they had penetrated LockBit’s website.  The website was locked down and replaced with different content, in a clear attempt to threaten the hackers that the authorities were pursuing them. 

The February operation also included the arrests of two alleged LockBit members in Ukraine and Poland; the takedown of 34 servers across Europe, the UK, and the US; and the seizure of more than 200 cryptocurrency wallets belonging to the hackers.

LockBit was first detected t in 2019 and has subsequently turned inn to one of the most prolific ransomware gangs in the world, netting millions of dollars in ransom payments. 

Recently, the hacking collective vx-underground published on X that they had spoken to LockBit’s administrative staff, who had told them the police were lying. “I don’t understand why they’re putting on this little show. They’re clearly upset we continue to work,” the staff said, according to vx-underground.

Indeed, Lockbit has proven to be very resilient. Even after February’s takedown, the gang came back with a new dark web leak site, which has been actively updated with new apparent victims.  All the new posts on the seized website, except for one, have a countdown, suggesting that law enforcement will announce the further actions against LockBit. 

@vxunderground    |   The Record   |     Techcrunch   |    Techcrunch   |    PCMag   |    SlashDot   |   LinkedIn   | 

Guardian   |  

Image: Ideogram

You Might Also Read: 

Prioritising  Prevention Is Better Than Paying Ransom:

DIRECTORY OF SUPPLIERS - Ransomware Protection:

__________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible


 

« Is A Passwordless Future A More Secure Future?
Mobile Gambling - Sportsbooks Face Growing Fraud »

ManageEngine
CyberSecurity Jobsite
Check Point

Directory of Suppliers

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

SailPoint

SailPoint

SailPoint provides identity governance solutions with on-premises and cloud-based identity management software for the most complex challenges.

Silverfort

Silverfort

Silverfort introduces the first security platform enabling adaptive authentication and identity theft prevention for sensitive user, device and resource throughout the entire organization.

Halon

Halon

Halon is a flexible security and operations platform for in-transit email.

Department of Justice & Equality - Cybercrime Division - Ireland

Department of Justice & Equality - Cybercrime Division - Ireland

The Cybercrime division is responsible for developing policy in relation to the criminal activity and coordinating a range of different cyber initiatives at national and international level.

MagicCube

MagicCube

MagicCube is a device independent IoT security platform that protects against on-device, cloud, and network attacks.

Charities Security Forum (CSF)

Charities Security Forum (CSF)

The Charities Security Forum is the premier membership group for information security people working for charities and not-for-profits in the UK.

BicDroid

BicDroid

BicDroid is a world leader in data and cyber security with innovative solutions that protect your data anywhere, anytime, against everything.

NSR

NSR

NSR provide trusted solutions that deliver positive business outcomes for our clients in cybersecurity and data protection challenges.

Redhorse

Redhorse

Redhorse provides top-tier consulting to help clients address mission-critical government problems in National Security, Networking Technology, Energy and the Environment.

Cisco Networking Academy

Cisco Networking Academy

Cisco Networking Academy is the world's largest classroom, bringing technology education, 21st-century skills, and improved jobs prospects since 1997.

Security Risk Management (SRM)

Security Risk Management (SRM)

SRM provide a comprehensive security risk management service encompassing people, processes, technology, governance, compliance and risk management.

Prancer

Prancer

Prancer is the industry's first cloud-native, self-service SAAS platform for automated security validation and penetration testing in the cloud.

Klarytee

Klarytee

Protect your data wherever it goes. Klarytee is a SaaS platform that builds security into sensitive content to enable granular control in AI, public cloud and SaaS.

Barquin Solutions

Barquin Solutions

Barquin Solutions is a full-service information technology consulting firm focused on supporting U.S. federal government agencies and their partners.

Custocy

Custocy

Custocy is a unique collaborative AI technology that identifies sophisticated and unknown (zero-day) attacks.

Relyance AI

Relyance AI

Relyance AI - One unified platform for privacy, security, & governance.