Security News > 2023 > February > LockBit's Royal Mail ransom deadline flies by. No data released

In brief The notorious LockBit ransomware gang has taken credit for an attack on the Royal Mail - but a deadline it gave for payment has come and gone with nothing exposed to the web except the group's claims.

LockBit even published a page bragging of an attack against fintech firm ION without directly acknowledging the Royal Mail attack earlier this week - though that's now changed, according to Reuters.

Lockbit threatened on February 7 that it would release data stolen from the Royal Mail on February 9 if His Majesty's letter carriers didn't pay ransom demands.

Brett Callow, threat analyst at Emsisoft, said in a tweet that the maneuver was likely a harassment tactic intended to keep Royal Mail under pressure, and that LockBit has reset release countdown timers in other breaches before.

"Bottom line: LockBit will not release data until they have given up on being able to monetize the attack," Callow said.

As of February 9, the Royal Mail said multiple international services had been reinstated, but it was still "Unable to process new Royal Mail parcels purchased through Post Office branches."

News URL

https://go.theregister.com/feed/www.theregister.com/2023/02/13/lockbits_royal_mail_ransom_deadline/