Professional Documents
Culture Documents
Ransomware is malicious software that encrypts data; Lockbit and its affiliates
makes money by coercing its targets into paying ransom to decrypt or unlock that data
with a digital key. The gang's digital extortion tools have been used against some of the
world’s largest organisations in recent months.
Its affiliates are like-minded criminal groups that Lockbit recruits to wage attacks
using those tools. Those affiliates carry out the attacks, and provide Lockbit a cut of the
ransom, which is usually demanded in the form of cryptocurrency, making it harder to
trace.
Operation Cronos seized 34 of Lockbit's servers, arrested two members of the
gang, froze 200 cryptocurrency accounts, and closed 14,000 "rouge accounts" used
online to launch Lockbit's operations, the police agencies said.
Lockbit has caused monetary losses totaling billions, the NCA's Biggar said, to
businesses who not only had to pay ransom payments, but also had to shoulder the cost
of getting their systems back online.
Before it was taken down, Lockbit's website displayed an ever-growing gallery of
victim organisations that was updated nearly daily. Next to their names were digital
clocks that showed the number of days left to the deadline given to each organisation to
provide ransom payment.
On Tuesday, the Lockbit leak website had been transformed by the NCA, FBI and
Europol into a leak site about the criminal gang itself, onto which international police
agencies published internal data from inside the group, and countdown clocks
threatening to reveal upcoming sanctions and the identity of Lockbit’s ringleader,
“LockbitSupp”.
(source: Lockbit cybercrime gang faces global takedown with indictments and arrests | Reuters)