Cybersecurity News in Asia

LockBit, disrupted… !?

By CybersecAsia editors | Friday, February 23, 2024, 10:02 AM Asia/Singapore

At least for the time-being, as a tripartite crackdown takes down the ransomware group’s infrastructure and arrests some of its members.

Recently, global law enforcement agencies announced a major victory in relation to the highly prolific ransomware group LockBit. The latter’s web infrastructure was successfully taken down, and two of its members were arrested, while two others were charged for serious crimes.

Since 2020, LockBit has been among the top 10 most reported ransomware infections. With the demise of Conti in early 2022, LockBit had vaulted to the top of the charts.

According to Chester Wisniewski, Director, Global Field CTO, Sophos, a firm that been tracking the evolution of LockBit over the past four-and-a-half years, the decentralized nature of ransomware groups makes them particularly difficult to track down. However, on 19 Feb 2024, “the work of the UK’s National Crime Agency and their international partners (the US and the EU) has delivered a severe blow to the world’s most prolific criminal ransomware syndicate. This is the most insight we have gained into how these groups operate since Conti’s implosion in May of 2022.”

Importantly, the law enforcement agencies involved have acquired access to the encryption keys used to hold LockBit victims’ files hostage, and will hence in efforts to recover stolen files. “Hopefully this will expedite recovery and lessen the impact for LockBit’s targets. It was also disclosed that for that paid ransom(s), their data was not in fact deleted by the criminals, which sadly should come as no surprise,” noted Wisniewski.

However, as has happened so often with other threat groups, will LockBit make a comeback in one form or another? Wisniewski said that, although much of LockBit’s infrastructure is still online, he does not expect the group to make a triumphant return: “These groups continually rebrand and regroup under different banners … and take on name identities to evade sanctions. It’s probably fair to say goodbye for now, but just like other groups before them, those who are not apprehended are likely to continue their crime spree. We must remain vigilant and not let our guard down.”

Leave a reply Cancel reply

You must be logged in to post a comment.

Voters-draw/RCA-Sponsors

CybersecAsia Voting Placement

Gamification listing or Participate Now

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

Closing the Gap in Email Security:How To Stop The 7 Most SinisterAI-Powered Phishing Threats
Insider threats continue to be a major cybersecurity risk in 2024. Explore more insights on …Download Whitepaper
2024 Insider Threat Report: Trends, Challenges, and Solutions
Insider threats continue to be a major cybersecurity risk in 2024. Explore more insights on …Download Whitepaper
AI-Powered Cyber Ops: Redefining Cloud Security for 2025
The future of cybersecurity is a perfect storm: AI-driven attacks, cloud expansion, and the convergence …Download Whitepaper
Data Management in the Age of Cloud and AI
In today’s Asia Pacific business environment, organizations are leaning on hybrid multi-cloud infrastructures and advanced …Download Whitepaper

Middle-sidebar-banner

Case Studies

How a Vietnamese D2C retailer built its own secure digital infrastructure
Would your organization build your own digital infrastructure – including AI governance and cybersecurity – …Read more
Cyber protection for medical clinics in Singapore
As Singapore’s healthcare sector becomes increasingly digital and interconnected, clinics are facing heightened cyber risks, …Read more
India’s WazirX strengthens governance and digital asset security
Revamping its custody infrastructure using multi‑party computation tools has improved operational resilience and institutional‑grade safeguardsRead more
Bangladesh LGED modernizes communication while addressing data security concerns
To meet emerging data localization/privacy regulations, the government engineering agency deploys a secure, unified digital …Read more

Bottom sidebar

Other News

Digital Identity Co. Modernizes Thailand Immigration Bureau Services with AWS
Friday, May 29, 2026
Mobile app enables travelers to …Read More »
VIVOTEK VORTEX Powers AI Cloud Security in Denmark’s Kongens Ege Mixed-Use Development
Thursday, May 28, 2026
TAIPEI, May 28, 2026 /PRNewswire/ …Read More »
DJI Releases Findings of the Most Comprehensive Independent Security Assessment of Its Drone Systems to Date
Thursday, May 28, 2026
Zero Critical, High, or Medium-Risk …Read More »
AUTOCRYPT Achieves WebTrust Accreditation for V2X PKI Infrastructure
Tuesday, May 26, 2026
SEOUL, South Korea, May 26, …Read More »
CPRO, a Leader in the Physical AI Security Industry, to be Publicly Listed on a U.S. National Securities Exchange Through Business Combination with Lakeshore Acquisition III Corp.
Tuesday, May 26, 2026
CPRO is a fast-growing physical …Read More »

Featured

Hidden trade-offs behind enterprise AI ambitions

Featured

Is secure issuance a solved problem, or is the debate more complex?

Featured