Key Points:
- The LockBit ransomware gang has claimed four new victims, namely: US-based Bemes, Inc., Spirit Leatherworks, and Robert F. Pagano & Associates, and China-based Goldwind.
- The cyberattacks are unverified pending confirmation from the affected companies.
- LockBit has reportedly extorted around $91 million since 2020 by using double extortion tactics.
The infamous LockBit ransomware group, which has been active for over four years, has broadened its list of victims with four new entities added. This time, the LockBit cyberattack has claimed US-based Bemes, Inc., Spirit Leatherworks, and Robert F. Pagano & Associates, and China-based Goldwind as its four latest victims.
Interestingly, while the hacker group has claimed responsibility for the attacks, this remains unverified until there’s official confirmation from the affected companies. When trying to access the websites of the reportedly affected entities, most were operating normally. However, the websites for Goldwind and Robert F. Pagano & Associates faced loading errors.
The LockBit ransomware gang uses double extortion tactics, encrypting victims’ data and threatening to leak it if their demands are not met. Remarkably, according to the US Government, LockBit has extorted approximately $91 million since 2020.
LockBit is one of the few ransomware gangs to use self-spreading malware technology and double encryption. The group has targeted organizations globally, including the Royal Mail, and Boeing. Moreover, LockBit first surfaced in 2019, and since then, has focused on targeting thousands of companies worldwide with a particular focus on those headquartered in the United States.
In conclusion, the Cybersecurity and Infrastructure Security Agency (CISA) stated that LockBit has carried out at least 1700 cyberattacks on various US-based enterprises. Typically, they extort money by taking confidential information and using it as leverage. The aforementioned victims are only the latest in the group’s long-lasting run.