International IT consultancy giant Accenture has become the most current enterprise to be hit by the LockBit ransomware gang, in accordance to a submit manufactured by the operators on their dark web portal, probably filling a void left in the wake of DarkSide and REvil shutdown.
“These folks are over and above privateness and safety. I genuinely hope that their products and services are far better than what I saw as an insider,” study a message posted on the info leak site. Accenture reported it has given that restored the affected programs from backups.
LockBit, like its now-defunct DarkSide and REvil counterparts, operates using a ransomware-as-a-service (RaaS) product, roping in other cybercriminals (aka affiliates) to carry out the intrusion making use of its platform, with the payments often divided among the prison entity directing the assault and the main builders of the malware.
The ransomware group emerged on the menace landscape in September 2019, and in June 2021 launched LockBit 2. alongside with an promoting marketing campaign to recruit new partners. “LockBit also statements to give the quickest facts exfiltration on the market as a result of StealBit, a data theft tool that can allegedly download 100 GB of data from compromised devices in below 20 minutes,” Emsisoft noted in a profile of the criminal offense syndicate.
Some of LockBit’s earlier victims consist of the Press Trust of India and Merseyrail.
The improvement arrives as ransomware incidents have develop into a significant threat to nationwide and economic protection that have remaining firms scrambling to spend significant extortion requires.
The spike in assaults in opposition to corporate and vital infrastructure have also been ever more accompanied by a tactic called “triple extortion,” wherein delicate info on a target’s programs is extracted prior to locking up by means of encryption, adopted by implementing tension on target providers into shelling out up by threatening to publish the stolen knowledge on-line, failing which, the attackers then adopt a third stage, employing that details to blackmail its clients or launch DDoS assaults.
We have arrived at out to Accenture for even more comment, and we will update the tale as soon as we listen to back.