1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • LockBit is back, with a new ransomware source code

    From TechnologyDaily@1337:1/100 to All on Thu Feb 2 14:45:04 2023
    LockBit is back, with a new ransomware source code

    Date:
    Thu, 02 Feb 2023 14:30:00 +0000

    Description:
    Dreaded LockBitransomware is now using Conti's code, researchers claim.

    FULL STORY ======================================================================

    The infamous LockBit ransomware gang has updated the code of its encryptor once again, cybersecurity researchers are saying.

    Multiple cybersecurity groups have confirmed that LockBit is now using an encryptor called LockBit Green, which analysts say is based on the Conti ransomware source code leaked in 2022.

    The reasons for the switch are purely speculative at this point, as all researchers agree that the former version - LockBit 3.0 - worked just fine. One possible explanation is that since Contis demise, many cybercriminals joined LockBit and feel more comfortable using their old source code. Leaked source code

    Whatever the reasons, so far five victims have been confirmed. We dont know
    if the ransom demand has changed.

    Conti was one of the most popular ransomware variants in the months leading
    up to Russias invasion of Ukraine. However, in the first few days of the war, the cybercrime group voiced its support for the Kremlin, posting a message on its website that any groups going after Russias infrastructure will face retaliation.

    After that, it faced major backlash from the underground community, so much
    so that one hacker leaked multiple versions of the Conti encryptor source code, as well as tens of thousands of messages shared between the groups members. Read more

    Conti ransomware group officially shuts down - but probably not for long


    Conti ransomware group has internal chats leaked after siding with Russia


    Remove viruses and ransomware with the best malware removal

    In May 2022, Conti was reportedly shut down as an operation, and switched to
    a more decentralized system in which multiple smaller groups operated independently.

    Ransomware continues to be one of the most disruptive and damaging forms of cybercrime. Microsoft recently stated that it tracks more than 100 ransomware groups , using more than 50 different ransomware variants to extort money out of their victims. Law enforcement agencies warned victims not to pay the ransom, as not only does that not guarantee getting the data back, but also motivates the crooks to engage in additional attacks. Here's our rundown of the best endpoint protection services right now

    Via: BleepingComputer



    ======================================================================
    Link to news story: https://www.techradar.com/news/lockbit-is-back-with-a-new-ransomware-source-co de


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)