Security News > 2024 > May > LockBit leader unmasked: US charges Russian national
Russian national Dmitry Khoroshev is "LockBitSupp", the creator, developer and administator of the infamous LockBit ransomware group, according to UK, US and Australia law enforcement agencies.
In February 2024, the UK National Crime Agency took over LockBit's leak site and claimed to have infiltrated the group's network, obtained the LockBit platform's source code, as well as intelligence about its affiliates and victims.
"The group has attempted to rebuild over the last two months, however the NCA assesses that as a result of this investigation, they are currently running at limited capacity and the global threat from LockBit has significantly reduced," the National Crime Agency says.
"LockBit have created a new leak site on which they have inflated apparent activity by publishing victims targeted prior to the NCA taking control of its services in February, as well as taking credit for attacks perpetrated using other ransomware strains. Data shows that the average number of monthly LockBit attacks has reduced by 73% in the UK since February's action, with other countries also reporting reductions."
The agency also says that, since February, the list of active LockBit affiliates has shrunk significantly, and that LockBit "Did not routinely delete stolen data once a ransom was paid."
Khoroshev was the LockBit ransomware group's developer and administrator since its inception, the US DOJ alleges.
News URL
https://www.helpnetsecurity.com/2024/05/07/lockbit-lockbitsupp-unmasked/
Related news
- US Government, Microsoft Aim to Disrupt Russian threat actor ‘Star Blizzard’ (source)
- US, UK warn of Russian APT29 hackers targeting Zimbra, TeamCity servers (source)
- Crypt Ghouls Targets Russian Firms with LockBit 3.0 and Babuk Ransomware Attacks (source)
- US warns of last-minute Iranian and Russian election influence ops (source)
- Russian suspected Phobos ransomware admin extradited to US over $16M extortion (source)