LockBit ransomware attacked an IT consulting company, Accenture. Ransomware operators stole company data and have threatened to publish on the Dark web.
▪ LockBit is “Double extortion” technique-based Ransomware-as-a-Service (RaaS) provider. Threat actors utilise its services as desired and provide a percentage of the ransom to the LockBit operators as commission.
▪ Australian cybersecurity agency is aware of number of ransomware incidents since 2020 on corporate systems in a variety of countries and sectors.
▪ Since January 2020, the ‘LockBit’ operators have appeared on Russian-language cybercrime forums. In June 2021, version two of the ‘LockBit’ RaaS was advertised as ‘LockBit 2.0’ and was allegedly bundled with a built-in information stealing function known as ‘StealBit’.
▪ StealBit function can download 100 GB of data from compromised systems in under 20 minutes.
▪ This week global consulting giant Accenture was attacked by LockBit 2.0 ransomware operators. The threat actors have allegedly disclosed stolen data of over 6TB and are demanding $50M as a ransom.
▪ The gang behind LockBit has already published 2384 files on ‘LockBit 2.0’ site hosted on the Dark web.