Contents:
The FBI has disclosed that it has acquired over 7,000 LockBit decryption keys that individuals can utilize to access encrypted data at no cost, but it is urging previous victims of LockBit ransomware attacks to come forward.
This was announced by the FBI’s Cyber Division Assistant Director, Bryan Vorndran, at the 2024 Boston Conference on Cyber Security.
From our ongoing disruption of LockBit, we now have over 7,000 decryption keys and can help victims reclaim their data and get back online… We are reaching out to known LockBit victims and encouraging anyone who suspects they were a victim to visit our Internet Crime Complaint Center at ic3.gov.
Bryan Vorndran, FBI Cyber Division Assistant Director (Source)
Details About the Seizing and LockBit
The call for action comes after LockBit’s infrastructure was taken down by law authorities in February 2024 as part of a multinational operation known as ‘Operation Cronos’.
During that campaign, the police managed to seize 34 servers containing over 2,500 decryption keys, which helped create a free LockBit 3.0 Black Ransomware decryptor.
The U.K.’s National Crime Agency and the U.S. Justice Department estimate that the gang and its associates have made up to $1 billion in ransom money after 7,000 attacks against organizations worldwide between June 2022 and February 2024, based on their analysis of the information they collected.
Despite efforts from the authorities to shut down the operation, the ransomware gang is still active and has switched to new servers and dark web domains.
They have continued to target victims all around the world and have been releasing large volumes of fresh and old stolen data on the dark web as payback for the recent infrastructure takedown by U.S. and U.K. authorities.
Most recently, the ransomware gang claimed an attack on the Canadian pharmacy chain London Drugs. This happened after another law enforcement operation that doxed the leader of the operation, a 31-year-old Russian national named Dmitry Yuryevich Khoroshev, known online as ‘LockBitSupp’.
If you liked this piece, you can find more on the blog. Follow us on LinkedIn, Twitter, Facebook, and YouTube for more cybersecurity news and topics.