Security News > 2024 > February > LockBit ransomware returns to attacks with new encryptors, servers
![LockBit ransomware returns to attacks with new encryptors, servers](/static/build/img/news/lockbit-ransomware-returns-to-attacks-with-new-encryptors-servers-medium.jpg)
The LockBit ransomware gang is once again conducting attacks, using updated encryptors with ransom notes linking to new servers after last week's law enforcement disruption.
Last week, the NCA, FBI, and Europol conducted a coordinated disruption called 'Operation Cronos' against the LockBit ransomware operation.
LockBit set up a new data leak site and left a long note addressed to the FBI, claiming law enforcement breached their servers using a PHP bug.
As of yesterday, LockBit appears to be conducting attacks again, with new encryptors and infrastructure setup for data leak and negotiation sites.
At the time of LockBit's takedown, the ransomware operation had approximately 180 affiliates working with them to conduct attacks.
LockBit ransomware returns, restores servers after police disruption.
News URL
Related news
- Russians plead guilty to involvement in LockBit ransomware attacks (source)
- Two Russian Nationals Plead Guilty in LockBit Ransomware Attacks (source)
- Oracle WebLogic Server OS Command Injection Flaw Under Active Attack (source)
- London hospitals left in critical condition after ransomware attack (source)
- Major London hospitals disrupted by Synnovis ransomware attack (source)
- Qilin ransomware gang linked to attack on London hospitals (source)
- FBI recovers 7,000 LockBit keys, urges ransomware victims to reach out (source)
- FBI Distributes 7,000 LockBit Ransomware Decryption Keys to Help Victims (source)
- London hospitals face blood shortage after Synnovis ransomware attack (source)
- TellYouThePass ransomware exploits recent PHP RCE flaw to breach servers (source)