Surely these days you have heard about LockBit and the attack on public administration.
But who is LockBit, when did it come into existence, and most importantly, why does it exist?
CyberBrain, the cyber team of HRC, is here to answer your questions!
We are only interested in money for our harmless and useful work. All we do is provide paid training to system administrators scattered around the globe on how to set up an enterprise network properly." adding: "we will never, under any circumstances, take part in cyber attacks on critical infrastructure of any country in the world or participate in international conflict
LockBit
LockBit is a malware of the same name. Cyber Gang, active since 2019 that carries out attacks of the ransomware. LockBit is a real cyber crime 'company' recruiting developers on the dark web offering phantasmagorical figures, up to a million dollars, to those who help them improve their 'product'. The gang usually consists of between 25 and 30 affiliates, as well as about 100 industry specialists such as experts in spreading malware, experts in evading detection systems, programmers, experts in collecting login credentials ...
But how does it spread? LockBit usually spreads through phishing emails, software exploits, or through the compromise of an organization's servers. Once installed on a system, LockBit encrypts user files and demands a cryptocurrency ransom in exchange for the decryption key. Cybercriminals usually provide instructions on how to make the ransom payment through a message displayed on the screen or through a ransom note left in the encrypted files.
LockBit has given an interview to Red Hot Cyber where he says that the percentage of companies that pay the ransom range from 10 to 50%. However, ransomware is not the only source of income for the gang. LockBit uses "as a Service" (RaaS) ransomware, which indicates a type of ransomware that is offered as a service to people who do not necessarily know how to create or manage malware.
Instead of having to develop the malicious software from scratch, "customers" can hire this service from specialized cybercriminals, in this case LockBit. This model simplifies the process of conducting ransomware attacks, making it accessible to more individuals, even those with limited technical skills. In essence, it is as if malicious attackers rent a tool to conduct a malicious attack on computers or networks, with the goal of demanding payment in exchange for freeing the data or restoring the system.
Although it may seem strange to you, we should still add that LockBit abides by a code of ethics. For example, after the attack on a school caused by one of their affiliates, they distanced themselves and apologized.
We recommend that you install a MDR (proactive, intelligent and managed antivirus) to protect your device. If you need help, you can contact the CyberBrain team at any time and by any means: WhatsApp, Social, E-mail, Phone ...
CyberBrain, HRC's cyber team.
IT 
EN 