In the aftermath of last year’s leak of the LockBit 3.0 ransomware encryptor builder, cybersecurity researchers have been tracking a proliferation of new variants. This digital Pandora’s box has unleashed a wave of cyber threats, with hundreds of unique ransomware strains emerging from the original LockBit blueprint.
Kaspersky, a renowned cybersecurity firm, has recently identified a significantly modified version of LockBit. This new strain was reportedly unleashed by a group self-identifying as NATIONAL HAZARD AGENCY. The group targeted an undisclosed entity, distinguishing itself from its LockBit 3.0 progenitor through a unique ransom note.
Typically, LockBit ransomware doesn’t disclose the demanded ransom upfront. Instead, it uses a proprietary platform to negotiate with its victims. However, this new group broke from tradition, specifying the exact amount they expected and instructing victims to use a Tox service and email for communication.
LockBit 3.0 Variants
But NATIONAL HAZARD AGENCY is not the only group to have repurposed LockBit for its own nefarious ends. Kaspersky’s data reveals nearly 400 unique LockBit samples, with 312 created using the leaked builder. Interestingly, at least 77 samples have completely disassociated themselves from the original LockBit, not even mentioning it in their ransom notes.
The researchers noted that many of these new variants closely resemble the original LockBit, suggesting they were either hastily developed or the work of less meticulous actors. LockBit’s notoriety isn’t unfounded. The US Cybersecurity and Infrastructure Security Agency (CISA), in collaboration with the FBI, Multi-State Information Sharing and Analysis Center (MS-ISAC), and cybersecurity authorities from several countries, recently declared LockBit as one of the most successful ransomware threats.
According to a security advisory published by these organizations, LockBit has pilfered approximately $91 million from US victims alone since 2020.
Over the past three years, it has successfully breached about 1,700 American organizations. In 2021, a significant 16% of all attacks targeted State, Local, and Tribunal (SLTT) governments, with municipal governments, educational institutions, and public service organizations being particularly vulnerable.
As the digital landscape continues to evolve, the importance of robust cybersecurity measures, such as firewalls, cannot be overstated. The LockBit 3.0 saga serves as a stark reminder of the potential consequences of cyber threats and the importance of constant vigilance in the face of ever-evolving digital dangers. Source: TheHackerNews
About the Author / Author Expertise
Amanda Reynolds is a passionate writer who recently graduated from journalism school, ready to make her mark in the world of technology and gaming. With a deep love for both fields, Amanda possesses a unique ability to blend her technical knowledge with her exceptional storytelling skills, captivating readers with engaging and informative content. Having grown up immersed in the world of video games, Amanda developed a profound understanding of the intricate mechanics and immersive narratives that make gaming a compelling art form.
Her extensive experience playing a wide variety of genres enables her to provide insightful analysis and reviews, highlighting the strengths and weaknesses of each game while delving into the larger cultural impact they have on society. In addition to gaming, Amanda’s fascination with technology led her to explore the ever-evolving landscape of digital innovations.
She stays up to date with the latest gadgets, software advancements, and tech trends, allowing her to translate complex concepts into accessible articles that resonate with readers of all backgrounds. Amanda’s enthusiasm for technology extends beyond the mere product reviews, as she explores the transformative potential of emerging technologies like artificial intelligence, virtual reality, and blockchain.
Check out our latest posts here