Ransomware Group

LockBit 3.0

Also known as: LockBit Black

Status: active • First seen 2022-062,500+ known victims

LockBit 3.0 is the latest version of the most prolific ransomware. They even offered money to hackers who found bugs in their code. The police tried to shut them down but they keep coming back.

Overview

LockBit 3.0 introduced a bug bounty program and continued operations despite multiple law enforcement takedowns. The leaked builder enabled many copycat operations.

Target Industries

Healthcare, Manufacturing, Government, Finance

How They Attack

  • RaaS model
  • Bug bounty
  • Builder leak enablement
  • Double extortion

Notable Victims

Boeing (2023), ICBC (2023), Royal Mail (2023)

Is your business exposed?

How to Protect Against LockBit 3.0

  1. 1.

    Monitor for LockBit 3.0 indicators

  2. 2.

    Implement comprehensive ransomware defense

  3. 3.

    Follow law enforcement guidance

MITRE ATT&CK Techniques

T1566, T1190, T1486, T1567

Related Groups

Lockbit

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required

Privacy PolicyYour Privacy Choices