Recent reports indicate a data leak from the LockBit group following a hacker attack. An anonymous group, allegedly from Prague, published internal data including Bitcoin addresses and user information.
Data Breach at LockBit
Last week, analysts from the blockchain security firm SlowMist reported on the compromise of LockBit's data, one of the most notorious ransomware groups. The leaked data package includes over 60,000 Bitcoin addresses, about 75 user credentials, and ransom negotiation logs. One record even suggests a ransom payment might have been made from a Coinbase account.
LockBit's Response to the Hack
LockBit responded to the incident on its official channel in Russian. When asked if they were 'pwned,' LockBit stated that 'only the lightweight panel with an authorization code was breached,' assuring that 'no decryptors were stolen, and no company data was affected.'
Reputation and Consequences
When asked if the hack would harm their reputation, LockBit admitted that it 'affects' their image, but reiterated that the source code 'was not stolen' and that the group is 'already working on recovery.' Ironically, LockBit is now offering a bounty for information on the hacker, despite the U.S. government previously offering up to $15 million in rewards for information on LockBit members.
The situation with LockBit raises questions about the security of ransomware groups and illustrates how easily a breach can occur, even for such well-known organizations.
