A few days after the Cronos operation, with which international law enforcement agencies dealt a heavy blow to the Lockbit ransomware group, researchers have detected a new wave of attacks, associated with the same criminal organization, which is once again spreading the malware and threatens to further concentrate its attacks on the government sector.
The attacks, identified in the last 24 hours by security companies Sophos and Huntress, exploit two serious vulnerabilities.
In a message the LockBit group - as explained by the specialized site Bleeping Computer - provided details on the breach and how they will manage the activity to make their infrastructure more difficult to hack.
The cybercriminal group confirmed the breach a few days ago, stating that it had only lost some servers and that backup systems were intact.
He spoke of the group's "personal negligence and irresponsibility" which led the police to interrupt its activity with Operation Cronos.
The hackers have kept the brand name, moved the data to a new site and also plan to upgrade the inviolability of their infrastructure.
Reproduction reserved © Copyright ANSA