Lockbit ransomware.

A group that claims to come from Prague apparently kidnapped the dark web panel from LockBit and did sensitive data, including its internal systems and Bitcoin letters.

Lockbit, one of the most notorious ransomware gangs, seems to have been hacked by someone who claimed to come from Prague, published internal data and leave a message that the group mocked.

Analysts of the Blockchain Security Company Slowmist announced in a blog post on Thursday that the leaked data package over 60,000 Bitcoin addresses (BTC) contained around 75 user registration information and ransom negotiation protocols. One of the records even pointed out that a ransom may have been paid for by a coin base account.

The attackers also seem to have received access to a light PHP-based management platform used by LockBit.

“[…] We speculate that the 'Prague' hacker will probably use a 0-day or 1-day susceptibility to impair the web backend and management console. “

Slow manure

Lockbit later replied in Russian on his official channel. When asked whether the group was “Pwned”, Lockbit claimed that “only the lightweight was violated with an authorization code”, reassured that “no decliners were stolen and no company data were affected”.

When asked whether the hack would damage its reputation, Lockbit admitted that it “influenced” his reputation, but repeated that the source code was “not stolen” and that the group “already works on recovery”. Ironically, LockBit now offers a bounty for information about the hacker, although the US government has previously offered up to 15 million US dollars rewards for information about Lockbit members.