• Tech News
    • Games
    • Pc & Laptop
    • Mobile Tech
    • Ar & Vr
    • Security
  • Startup
    • Fintech
  • Reviews
  • How To
What's Hot

Elementor #32036

January 24, 2025

The Redmi Note 13 is a bigger downgrade compared to the 5G model than you might think

April 18, 2024

Xiaomi Redmi Watch 4 is a budget smartwatch with a premium look and feel

April 16, 2024
Facebook Twitter Instagram
  • Contact
  • Privacy Policy
  • Terms & Conditions
Facebook Twitter Instagram Pinterest VKontakte
Behind The ScreenBehind The Screen
  • Tech News
    1. Games
    2. Pc & Laptop
    3. Mobile Tech
    4. Ar & Vr
    5. Security
    6. View All

    Bring Elden Ring to the table with the upcoming board game adaptation

    September 19, 2022

    ONI: Road to be the Mightiest Oni reveals its opening movie

    September 19, 2022

    GTA 6 images and footage allegedly leak

    September 19, 2022

    Wild west adventure Card Cowboy turns cards into weird and silly stories

    September 18, 2022

    7 Reasons Why You Should Study PHP Programming Language

    October 19, 2022

    Logitech MX Master 3S and MX Keys Combo for Business Gen 2 Review

    October 9, 2022

    Lenovo ThinkPad X1 Carbon Gen10 Review

    September 18, 2022

    Lenovo IdeaPad 5i Chromebook, 16-inch+120Hz

    September 3, 2022

    It’s 2023 and Spotify Still Can’t Say When AirPlay 2 Support Will Arrive

    April 4, 2023

    YouTube adds very convenient iPhone homescreen widgets

    October 15, 2022

    Google finishes iOS 16 Lock Screen widgets rollout w/ Maps

    October 14, 2022

    Is Apple actually turning iMessage into AIM or is this sketchy redesign rumor for laughs?

    October 14, 2022

    MeetKai launches AI-powered metaverse, starting with a billboard in Times Square

    August 10, 2022

    The DeanBeat: RP1 simulates putting 4,000 people together in a single metaverse plaza

    August 10, 2022

    Improving the customer experience with virtual and augmented reality

    August 10, 2022

    Why the metaverse won’t fall to Clubhouse’s fate

    August 10, 2022

    How Apple privacy changes have forced social media marketing to evolve

    October 16, 2022

    Microsoft Patch Tuesday October Fixed 85 Vulnerabilities – Latest Hacking News

    October 16, 2022

    Decentralization and KYC compliance: Critical concepts in sovereign policy

    October 15, 2022

    What Thoma Bravo’s latest acquisition reveals about identity management

    October 14, 2022

    What is a Service Robot? The vision of an intelligent service application is possible.

    November 7, 2022

    Tom Brady just chucked another Microsoft Surface tablet

    September 18, 2022

    The best AIO coolers for your PC in 2022

    September 18, 2022

    YC’s Michael Seibel clarifies some misconceptions about the accelerator • DailyTech

    September 18, 2022
  • Startup
    • Fintech
  • Reviews
  • How To
Behind The ScreenBehind The Screen
Home»Tech News»LockBit ransomware gang launches bug bounty programme
Tech News

LockBit ransomware gang launches bug bounty programme

June 27, 2022Updated:June 27, 2022No Comments4 Mins Read
Facebook Twitter Pinterest LinkedIn Tumblr Email
LockBit ransomware gang launches bug bounty programme
Share
Facebook Twitter LinkedIn Pinterest Email

In what is probably going a world’s first, the operators of LockBit have added a bug bounty programme as they launch model 3.0 of their ransomware, providing pay-outs to those who uncover vulnerabilities on their leak web site and of their code.

In screengrabs circulated on-line, the ransomware-as-a-service (RaaS) gang says it goals to “make ransomware nice once more” and particulars a variety of areas through which it’s looking for enter from “all safety researchers, moral and unethical hackers on the planet”, with funds ranging from $1,000.

The LockBit gang is especially eager to listen to about web site bugs, equivalent to cross-site scripting (XSS) vulnerabilities that might allow outsiders to acquire its decryption device, or entry its sufferer chat logs, bugs in its locker that might let victims get better their information with out paying for the decryption device.

It seems to additionally offer a $1m bounty for doxing each high-profile targets, in addition to the pinnacle of its affiliate programme, though the language on this level is unclear. It’s, nevertheless, maybe value noting that earlier intelligence gleaned by Pattern Micro suggests LockBit is understood for recruiting insiders to hold out its assaults.

Lockbit ransomware group introduced right this moment Lockbit 3.0 is formally launched with the message: “Make Ransomware Nice Once more!”

Moreover, Lockbit has launched their very own Bug Bounty program paying for PII on high-profile people, internet safety exploits, and extra… pic.twitter.com/ByNFdWe4Ys

— vx-underground (@vxunderground)
June 26, 2022

Commenting on the bizarre transfer, Suleyman Ozarslan, cofounder of Picus Safety, mentioned that it characterised the continuing evolution in the direction of extra collaboration throughout the cyber felony world, as typified by way of preliminary entry brokers (IABs), for instance.

See also  Microsoft fixes Windows 11 encryption bug that can lead to corrupted data

“The LockBit ransomware gang [has] expanded using different financially motivated menace actors with Lockbit 3.0. Beforehand, they paid for vulnerabilities and bugs in functions together with distant management instruments and internet functions. Now, additionally they pay for personal private details about necessary individuals for his or her doxing campaigns,” mentioned Ozarslan.

“Furthermore, they’re now paying for bugs to enhance their instruments and sourcing concepts to enhance their web site and ransomware. This contains locker bugs, the bugs within the encryption mechanism of ransomware, vulnerabilities of their messaging device, the Tox messenger, and their messaging channel on the Tor community.

“In my view, leveraging each moral and unethical hackers with these fee strategies will lead to extra superior ransomware.”

In accordance with Laptop Weekly’s sister publication, LeMagIT, the supply code of LockBit’s web site suggests various different refinements in model 3.0, together with new technique of monetisation and knowledge restoration, and even destruction ought to the sufferer select, and the flexibility for victims to pay within the Zcash cryptocurrency, along with Bitcoin and Monero.

Lively since late 2019, LockBit has emerged as a major menace to organisations, and though it has not but achieved the infamy accorded to the likes of Conti or REvil, the downfall of Conti has left a niche available in the market that it’s glad to fill.

Final month, the gang’s earlier ransomware, LockBit 2.0, accounted for 40% of assaults noticed by NCC Group. Matt Hull, NCC international lead for strategic menace intelligence, mentioned: “Lockbit 2.0 has quick cemented its place as probably the most prolific menace actor of 2022. It’s essential that companies familiarise themselves with their techniques, methods, and procedures. It’ll give them a greater understanding of the right way to defend in opposition to assault and probably the most acceptable safety measures to implement.”

See also  HTC Launches Aftermarket Face & Eye-trackers for Vive Focus 3 – Road to VR

Pattern Micro famous LockBit’s core operators or builders are significantly technically adept at growing what one would possibly moderately time period a high-performance ransomware that’s significantly speedy and environment friendly.

The launch of LockBit 2.0 noticed it debut a brand new malware referred to as StealBit to automate knowledge exfiltration, and it has additionally led the cost in the direction of focusing on Linux hosts, particularly ESXi servers. There isn’t a motive to suppose LockBit 3.0 might be any much less subtle.

Primarily based on Pattern’s metrics, gathered between June 2021 and January 2020, probably the most LockBit-related detections have been seen within the healthcare sector, adopted by training, expertise, monetary providers and manufacturing. An evaluation of its leak web site, between December 2021 and January 2022, discovered most victims have been in monetary or skilled providers, adopted by the commercial, authorized and automotive sectors.

An additional level to concentrate on features a attainable desire for victims in Europe who could also be motivated to pay out of worry of being present in breach of the Normal Information Safety Regulation (GDPR).



Source link

bounty bug gang launches LockBit programme ransomware
Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

Related Posts

Tapping His Experience, Serial Tech Entrepreneur Launches VC Firm To Back Black Founders

July 31, 2023

TipHaus, which helps companies distribute tips, raises $3.5M and launches banking tool – Startup

April 4, 2023

Human composting startup Recompose launches crowdfunding campaign to raise $5M – Startup

March 23, 2023

Former senator Reuven Carlyle launches climate consulting and finance venture backed by $14M – Startup

February 13, 2023
Add A Comment

Comments are closed.

Editors Picks

Post climate change city builder Floodland announced

August 28, 2022

As Africa’s digital economic system grows, costly web hinders investor exercise in some international locations – DailyTech

July 27, 2022

OnePlus 10T unveiled with 150W fast charging and Snapdragon 8+ Gen 1 SoC

August 3, 2022

Perfect Dark’s reboot needs to remember one key thing – it’s far more than a spy game

September 13, 2022

Subscribe to Updates

Get the latest news and Updates from Behind The Scene about Tech, Startup and more.

Top Post

Elementor #32036

The Redmi Note 13 is a bigger downgrade compared to the 5G model than you might think

Xiaomi Redmi Watch 4 is a budget smartwatch with a premium look and feel

Behind The Screen
Facebook Twitter Instagram Pinterest Vimeo YouTube
  • Contact
  • Privacy Policy
  • Terms & Conditions
© 2025 behindthescreen.uk - All rights reserved.

Type above and press Enter to search. Press Esc to cancel.