LockBit 2.0 is a financially motivated cybercriminal ransomware-as-a-service (RaaS) operation that emerged in June 2021 as a significant upgrade to its predecessor, LockBit. Believed to operate primarily out of Russia and other former Soviet bloc countries, the group's primary motivation is financial gain through extortion. What sets LockBit 2.0 apart is its claim of possessing the fastest encryption software globally, its robust affiliate program, the integration of its proprietary data exfiltration tool called StealBit, and its unique tactic of recruiting insiders from victim organizations directly through its ransom notes. It initially attracted affiliates through campaigns in underground forums and became highly prolific throughout 2021, particularly impacting the ransomware landscape with its speed and reach. The group evolved to target VMware ESXi hypervisors with a Linux-based variant and expanded its extortion tactics to include double extortion (data encryption and exfiltratio

URLs nuevas detectadas en IntelTracker