Lockbit - Ransomware
Lockbit, a Ransomware-as-a Service, was identified in the first quarter of 2020 by a joint research effort from McAfee Labs and Northwave. Once a victim has been compromised, a ransom note is dropped by the malware reporting that in addition to encrypting files the threat actor has also exfiltrated private data including financial, personal, and network information. The ransom note further instructs the victim to a dark web address to regain access to their encrypted data. In more recent attacks, the threat actor has threatened to publish confidential data that has been exfiltrated if the ransom is not met within the time frame set by the threat actor.