Security News > 2023 > December > LockBit ransomware now poaching BlackCat, NoEscape affiliates

LockBit ransomware now poaching BlackCat, NoEscape affiliates
2023-12-13 18:22

The LockBit ransomware operation is now recruiting affiliates and developers from the BlackCat/ALPHV and NoEscape after recent disruptions and exit scams.

Last week, the NoEscape and the BlackCat/ALPHV ransomware operation's Tor websites suddenly became inaccessible without warning.

Affiliates associated with NoEscape claimed that the ransomware operators pulled an exit scam, stealing millions of dollars in ransom payments and shutting off the operation's web panels and data leak sites.

As first reported by LeMagIT, LockBitSupp, the LockBit operation's manager, has begun to recruit affiliates from the BlackCat and NoEscape ransomware operations.

"LockBit ransomware group has added German Energy Agency dena to their victim list, which was previously a victim of ALPHV ransomware group," reads a tweet from FalconFeeds.

With LockBit being the largest ransomware operation at this time, LockBitSupp told BleepingComputer that he viewed the BlackCat outages as a "Christmas Gift.".


News URL

https://www.bleepingcomputer.com/news/security/lockbit-ransomware-now-poaching-blackcat-noescape-affiliates/