LockBit falters under pressure from competitors and copycats
LockBit has been claiming a hefty share of ransomware damage for years. Now the criminal organization is in danger of being pushed away by competing gangs and malicious actors that imitate them.
When LockBit was targeted by Europol and other authorities in February, the impact on the cybercrime ... Read more
LockBit returns with updated encryptors and new servers
LockBit restarted its operations after receiving a crackdown from police forces last week. The ransomware group launched a new website over the weekend to extort the victims it makes. However, the conclusion about the international action against LockBit is positive. How does the operation impact t... Read more
LockBit ransomware is hampered by police departments, but won’t stop -update
The hacker collective LockBit already has thousands of victims to its name. Drawing this much attention causes police departments to get eager to stop the criminal organization. Steps have recently been taken to that end, with a joint operation by Europol, the FBI and the British security services ... Read more
Cybercrime increasingly turns to as-a-Service tools
Ready-to-use malware, cryptominers and botnets can all be easily purchased by criminals. There's now a wide range of As-a-Service tools available on the dark web to facilitate illegal activities. That is not to say, however, that attackers are operating at a lower level, as they are increasingly by... Read more
FBI releases decryption tool for ALPHV/BlackCat ransomware victims
The U.S. Department of Justice has released a decryption tool to combat the effects from the infamous ALPHV/BlackCat ransomware variant. Developed by the FBI, the tool allows more than 500 victims to regain access to their data. However, ALPHV/BlackCat argues that the tool is not as effective as it... Read more
LockBit thieves have become victims of robbery themselves
Cybercriminals have become increasingly sophisticated, complete with Ransomware-as-a-Service models and coveted proprietary software. Now, one of the problems that legitimate organizations face has also surfaced for criminal enterprises: IP theft. The source code of the prominent LockBit 3.0 leaked... Read more
How ransomware has become cybercrime’s star player
In 2023, ransomware is still the most fear-inducing term for Internet users and organizations. After years of relative obscurity, the popularity of this collection of malicious software exploded between 2015 and 2017. Since then, revenues have grown, and the cybercrime market has professionalized. ... Read more
Ransomware attacks increase by 40 percent, encryption usage decreases
Research by Zscaler has shown that the number of ransomware attacks has increased by 40 percent over the past year. The biggest cause of this rise is the wide availability of Ransomware-as-a-service (RaaS) services on offer. However, Zscaler does see a shift in the type of ransomware attacks: namel... Read more
‘VMware ESXi ransomware problem worsening’
CrowdStrike reports that ransomware criminals are increasingly attacking VMware's ESXi hypervisor. Many systems are susceptible, mainly due to a lack of security tools.
CrowdStrike's blog is the third in the series on so-called hypervisor jackpotting. In February, thousands of attacks on ESXi se... Read more
‘Hackers breach Microsoft SQL servers to deploy Trigona ransomware’
The malware exploits a Windows vulnerability to "perform malicious behaviours".
Hackers are distributing Trigona ransomware via internet-exposed Microsoft SQL (MS-SQL) servers, according to a report in BleepingComputer. The externally accessible or poorly protected servers are being breached vi... Read more