Lockbit crackdown heats up as US offers reward for info on hackers

By Katharine Jackson and Raphael Satter

FILE PHOTO: A screenshot taken on February 19, 2024 shows a take down notice that a group of global intelligence agencies issued to a dark web site called Lockbit. Handout via REUTERS /File Photo

WASHINGTON (Reuters) -The U.S. offered a reward of up to $15 million for information on the leaders of the notorious cybercrime group Lockbit on Wednesday as police in Ukraine announced the arrest of a father-son duo alleged to have been involved with the gang.

The developments are the latest in a series of actions by international law enforcement against Lockbit, a leader among the online gangs that encrypt victims' data to extort money.

The U.S., the UK and the EU announced this week they had disrupted the group in an unusually aggressive international law enforcement operation that turned the hackers' own site against it. Officials have used the seized web page to taunt the hackers with forthcoming releases of data and a tool for victims of the ransom-seeking gang to decrypt their data for free. The U.S. has also unveiled sanctions and indictments against two of the group's key operatives.

In a statement, the State Department said it would offer up to $15 million for information leading to the arrests and convictions of the leaders of the ransomware group.

Ukraine's police service didn't identify the father-son pair but said they seized more than 200 cryptocurrency accounts and 34 servers used by the gang in the Netherlands, Germany, Finland, France, Switzerland, Australia, the United States and Britain.

The takedown has been one of the most eye-catching in recent memory, in part because of the trolling from police. But with many of the key hackers thought to be beyond the reach of Western law enforcement, experts said it was a matter of time before those behind Lockbit restarted their operations or drifted toward new cybercrime gangs.

"While there has been some arrests, a lot of this has been technical disruption," said Rafe Pilling, who directs Secureworks' threat research unit. He noted that a lot of Lockbit's damage was dealt by "affiliates," smaller hacking groups that carried out the initial break-ins. He said those hackers were "still out there and still going to do their thing."

"The threat may be temporarily diminished but the affiliates continue to pose a problem," Pilling said.

(Reporting by Katharine Jackson and Raphael Satter in Washington; Additional reporting by James Pearson in London; Editing by Lisa Shumaker and Jonathan Oatis)

×
Follow us on our official WhatsApp channel for breaking news alerts and key updates!

   

Report it to us.

Next In Tech News
Exclusive-Stanford AI leader Fei-Fei Li building 'spatial intelligence' startup
Tech platforms make pitch for ad deals as TikTok is roiled by politics
Intesa targets new digital-only clients after antitrust blow
Paramount will not extend exclusive deal period with Skydance
Google, US clash over search advertising as trial winds down
Germany and allies accuse Russia of sweeping cyberattacks
Analysis-Apple has big AI ambitions - at a lower cost than its rivals
Hong Kong privacy watchdog to grill authorities over ‘serious’ leak of 17,000 people’s data
Google defends app store, fighting Epic Games' bid for major reforms
Ewaste is overflowing landfills. At one sprawling Vietnam market, workers recycle some of it

Trending in Tech

Others Also Read

Load more

Copyright © 1995- Star Media Group Berhad [197101000523 (10894-D)]

Best viewed on Chrome browsers.