Malware News The Week in Ransomware - May 10th 2024 - Chipping away at LockBit

Gandalf_The_Grey

Level 78
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
6,766
After many months of taunting law enforcement and offering a million-dollar reward to anyone who could reveal his identity, the FBI and NCA have done just that, revealing the name of LockBitSupp, the operator of the LockBit ransomware operation.

On February 19, Operation Cronos took down LockBit's infrastructure and converted its data leak site into a law enforcement press release site where they released information about the police actions.

After being inactive for months, the site went live again on Sunday, teasing new information that would be released, including the possible identity of the LockBit admin.

On Tuesday, the NCA, Europol, and the FBI revealed the identity of LockBitSupp, a 31-year-old Russian national named Dmitry Yuryevich Khoroshev.

Since then, the LockBit operation has been on a revenge spree, leaking the names of 119 victims allegedly attacked by the ransomware operation.

While LockBitSupp says they are not going anywhere and will continue to conduct attacks, it would not be surprising to see them shut down and rebrand a new operation in the near future.

In other news, an attack on healthcare giant Ascension has caused massive disruption to the healthcare system, causing ambulances to be diverted from several hospitals and systems offline, including medical records.

According to CNN, the attack has been linked to the Black Basta ransomware operation.

Other ransomware attacks we learned more about this week are:
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top