A security breach exposed valuable data from LockBit ransomware’s administration panel, including chat messages, Bitcoin addresses, and user information. This leak provides insights into the group’s operations and negotiation tactics, potentially aiding law enforcement and cybersecurity efforts. (Affected: LockBit ransomware operation and its affiliated systems)
Keypoints :
- The hack involved defacement of a LockBit admin panel with a message and an archive link containing leaked data.
- The leaked information includes private messages, Bitcoin wallet addresses, affiliate accounts, and malware infrastructure details.
- Cybersecurity experts suggest the leaked data is valuable for law enforcement and threat analysis, especially Bitcoin addresses.
- Searchlight Cyber identified 76 user records, including usernames, passwords, and TOX IDs linked to hacking forums.
- Analysis of 208 conversations reveals how LockBit affiliates negotiate ransom payments, often using aggressive tactics.
- The defacement message’s similarity to another ransomware group’s message hints at possible infighting within the cybercriminal community.
- While LockBit publicly downplayed the breach’s impact, authorities continue to monitor and combat the threat posed by the group.
Read More: https://www.securityweek.com/valuable-information-leaked-in-lockbit-ransomware-hack/