After the maxi operation which involved the police forces of ben 11 different countries and the seizure of several domain sites .onionthe infrastructure of the infamous ransomware LockBit seemed destined to disappear.
The cybercriminals who manage this operation, in fact, have rebuilt a new structure in record time, with a new reference site for the group of cybercriminals.
The “new version” of LockBit, among other things, has already claimed new victims: according to the same site (also with a .onion domain) there is talk of 12 attacks ransomware successfully carried out in the last few hours.
Furthermore, a spokesperson for the cyber criminals used this platform to reveal some alleged background information relating to the law enforcement operation. According to the cybercriminal, in fact, the confiscation of the sites occurred through a critical flaw known as CVE-2023-3824exploited this time precisely to the detriment of cyber criminals.
According to what the group stated, theFBI would have “hacked” the infrastructure following a ransomware attack on contea i Fulton, which occurred last January. In that case, politically important documents would have been stolen which, according to the LockBit spokesperson, could influence the upcoming US elections.
LockBit, cybercriminals explain their point of view on what happened
In the post on the site, the work carried out by the police is also discredited. For cybercriminals, in fact, LockBit has not suffered such a hard blow and how the operations directed by the FBI have more impact on the image than on the actual functioning of the affiliate program RaaS.
The spokesperson then took responsibility for what happened, promising that in the future he will do more to counter any interference by the FBI and other government agencies.
Despite recent operations aimed at dismantling ransomware groups, this type of threat remains one of the most widespread online. As well as LockBit, in fact, also the dreaded one BlackCat continues to give cybersecurity experts sleepless nights.