Kevin Beaumont on Nostr: Interesting angle from the ongoing LockBit operation - due to LockBit’s poor ...
Interesting angle from the ongoing LockBit operation - due to LockBit’s poor security, the NCA and Europol now have victim data on over 7k attacks over an ~18 month window.
That’s way more victims than were listed on their portal. Spoiler: orgs who immediately start negotiations and then pay don’t appear on the portal.
Data gives first insight into scale of ransomware problem, and awkwardly shows authorities which victims paid without disclosing to regulators.
Published at
2024-05-08 10:52:10Event JSON
{
"id": "740f7d02e320926fda68a2aff3da4aa5dea5c2751c3521d88bcbf3b03c0f556e",
"pubkey": "f6870afcde4480ec8508f50304859e14a51309ff24ab3f0f862c52bdc4af8747",
"created_at": 1715165530,
"kind": 1,
"tags": [
[
"proxy",
"https://cyberplace.social/users/GossiTheDog/statuses/112405088177280905",
"activitypub"
]
],
"content": "Interesting angle from the ongoing LockBit operation - due to LockBit’s poor security, the NCA and Europol now have victim data on over 7k attacks over an ~18 month window. \n\nThat’s way more victims than were listed on their portal. Spoiler: orgs who immediately start negotiations and then pay don’t appear on the portal. \n\nData gives first insight into scale of ransomware problem, and awkwardly shows authorities which victims paid without disclosing to regulators.",
"sig": "6e26e78ba2545d891e6a8da368efd78b879f24973aa75831f440f893abeb5b983fd7ae7a05a38f861440f5fadbcb3b717493eb8945b2be0310329b77155e8723"
}
