lockbit – Computer Security Articles

L’aggiornamento di uno strumento di attacco compromette i computer Windows

October 1, 2024 admin blackcat, burntcigar, Cuba, EDR, edr killer, Featured, kernel driver, leaked certificate, lockbit, medusa, poortry, ransomhub, ransomware, signature, signed driver, stonestop, threat research

Credit to Author: Giusy Martin| Date: Tue, 10 Sep 2024 06:29:56 +0000

Un EDR killer che Sophos X-Ops ha monitorato per tre anni continua a tormentare le organizzazioni prese di mira dalle bande di ransomware

Security Sophos

Attack tool update impairs Windows computers

August 27, 2024 admin blackcat, burntcigar, Cuba, edr killer, Featured, kernel driver, leaked certificate, lockbit, medusa, poortry, ransomhub, ransomware, signature, signed driver, stonestop, threat research

Credit to Author: Andrew Brandt| Date: Tue, 27 Aug 2024 16:33:35 +0000

An EDR killer Sophos X-Ops has tracked for three years continues to bedevil organizations targeted by ransomware gangs.

Independent Krebs

The Not-So-Secret Network Access Broker x999xx

July 3, 2024 admin Breadcrumbs, cobalt strike, cobaltforce, constella intelligence, dashin2008@yahoo.com, Flashpoint, Intel 471, kirtsov@telecom.ozersk.ru, lockbit, maksim georgievich kirtsov, maksya@icloud.com, maxnmalias-1@yahoo.com, mikhail matveev, Ne'er-Do-Well News, operation endgame, osint.industries, ozersk technological institute national research nuclear university, Recorded Future, u.s. department of justice, wazawaka, x999xx, Кирцов Максим Георгиевич

Credit to Author: BrianKrebs| Date: Wed, 03 Jul 2024 16:41:34 +0000

Most accomplished cybercriminals go out of their way to separate their real names from their hacker handles. But among certain old-school Russian hackers it is not uncommon to find major players who have done little to prevent people from figuring out who they are in real life. A case study in this phenomenon is “x999xx,” the nickname chosen by a venerated Russian hacker who specializes in providing the initial network access to various ransomware groups.

MalwareBytes Security

[updated] Federal Reserve “breached” data may actually belong to Evolve Bank

June 27, 2024 admin bank, evolve, federal reserve, lockbit, news, ransomware

LockBit claimed to have breached Federal Reserve but in fact the data came from Evolve Bank & Trust

MalwareBytes Security

Federal Reserve “breached” data may actually belong to Evolve Bank

June 26, 2024 admin bank, evolve, federal reserve, lockbit, news, ransomware

LockBit claimed to have breached Federal Reserve but in fact the data came from Evolve Bank & Trust

Independent Krebs

‘Operation Endgame’ Hits Malware Delivery Platforms

May 30, 2024 admin 911 s5, Europol, IcedID, lockbit, matt burgess, Ne'er-Do-Well News, operation endgame, ransomware, smokeloader, The Coming Storm, trickbot

Credit to Author: BrianKrebs| Date: Thu, 30 May 2024 15:19:44 +0000

Law enforcement agencies in the United States and Europe today announced Operation Endgame, a coordinated action against some of the most popular cybercrime platforms for delivering ransomware and data-stealing malware. Dubbed “the largest ever operation against botnets,” the international effort is being billed as the opening salvo in an ongoing campaign targeting advanced malware “droppers” or “loaders” like IcedID, Smokeloader and Trickbot.

Independent Krebs

Stark Industries Solutions: An Iron Hammer in the Cloud

May 23, 2024 admin A Little Sunshine, andrey nesterenko, arbor, as44477, blue charlie, Breadcrumbs, callisto group, coldriver, comcast cable communications, computer technologies institute ltd, constella intelligence, correctiv.org, ddos-for-hire, ddosia, dfyz, dfyz_bk@bk.ru, don chicho, egihosting, ESET, federal state autonomous educational establishment of additional professional education center of realization of state educational policy and informational technologies, green floid llc, information technology laboratories group, innovation it solutions corp, integrated technologies laboratory, Intel 471, Internet Research Agency, itl llc, jeffrey carr, lockbit, max tulyev, mercenaries team, mirhosting, netassist, netscout, noname057(16), perfect quality hosting, pq hosting plus s.r.l., prolocation, proxyline, raymond dijkxhoorn, Recorded Future, richard hummel, russia's war on ukraine, seaborgium, serverius-as, spamhaus, stark industries solutions, surbl, team cymru, ukrinform

Credit to Author: BrianKrebs| Date: Thu, 23 May 2024 23:32:43 +0000

Two weeks before Russia invaded Ukraine in February 2022, a large, mysterious new Internet hosting firm called Stark Industries Solutions materialized and quickly became the epicenter of massive distributed denial-of-service (DDoS) attacks on government and commercial targets in Ukraine and Europe. An investigation into Stark Industries reveals it is being used as a global proxy network that conceals the true source of cyberattacks and disinformation campaigns against enemies of Russia.

Independent Krebs

How Did Authorities Identify the Alleged Lockbit Boss?

May 13, 2024 admin 3k@xakep.ru, 7.9521020220, A Little Sunshine, antichat, Breadcrumbs, Cerber, constella intelligence, d.horoshev@gmail.com, dmitrij ju horoshev, dmitry yuriyevich khoroshev, exploit, icq number 669316, Intel 471, khoroshev1@icloud.com, lockbit, lockbitsupp, Ne'er-Do-Well News, nerowolfe, pin@darktower.su, putinkrab, ransomware, Ransomware as a Service, sitedev5@yandex.ru, stairwell.ru, tkaner.com, u.s. department of the treasury, verified

Credit to Author: BrianKrebs| Date: Mon, 13 May 2024 11:26:27 +0000

Last week, the United States joined the U.K. and Australia in sanctioning and charging a Russian man named Dmitry Yuryevich Khoroshev as the leader of the infamous LockBit ransomware group. LockBit’s leader “LockBitSupp” claims the feds named the wrong guy, saying the charges don’t explain how they connected him to Khoroshev. This post examines the activities of Khoroshev’s many alter egos on the cybercrime forums, and tracks the career of a gifted malware author who has written and sold malicious code for the past 14 years.

← Previous