Ransomware Spotlight: LockBit

20 de febrero de 2024

The LockBit intrusion set, tracked by Trend Micro as Water Selkie, has one of the most active ransomware operations today. With LockBit’s strong malware capabilities and affiliate program, organizations should keep abreast of its machinations to effectively spot risks and defend against attacks.

Leer más  

Ransomware: A type of malware that prevents or limits users from accessing their system, either by locking the system's screen or by locking the users' files unless a ransom is paid.   Leer más
  • 05 de diciembre de 2023
    En este informe, detallamos los principales puntos del panorama de amenazas del próximo año, junto con ideas y medidas de mitigación recomendadas por el equipo de expertos en ciberseguridad de Trend Micro.
  • 05 de diciembre de 2023
    2024 is poised to be a hotbed for new challenges in cybersecurity as the economic and political terrains continue to undergo digitization and enterprises increasingly leverage artificial intelligence and machine learning (AI/ML), the cloud, and Web3 technologies. While these innovations are expected to lend a hand to organizations, they also provide opportunities for cybercriminals by promising big returns, more streamlined operations on wider impact zones, and more targeted victims.
  • 28 de noviembre de 2023
    After the shutdown of its leak site in October, we look at how ransomware group Trigona operated during its period of activity and discuss how enterprises can fortify their defenses against similar threats.
  • 05 de octubre de 2023
    This report spotlights Akira, a novel ransomware family with highly experienced and skilled operators at its helm.
  • 21 de septiembre de 2023
    We delve into three of the most active ransomware families that dominated the first half of 2023: LockBit, Clop, and BlackCat. This report features data from ransomware-as-a-service (RaaS) and extortion groups’ leak sites, Trend Micro’s open-source intelligence (OSINT) research, and the Trend Micro™ Smart Protection Network™, collected from Jan. 1 to June 30, 2023.
  • 08 de agosto de 2023
    Nuestros datos de gestión de riesgos de superficie de ataque (ASRM) mostraron que en Estados Unidos, Brasil e India se detectó la mayor cantidad de eventos de riesgo en la primera mitad de 2023.
  • 15 de marzo de 2023
    Backed by threat actors from Conti, Royal ransomware is poised to wreak havoc in the threat landscape, starting strong by taking a spot among the most prolific ransomware groups within three months since it was first reported. Combining new and old techniques and quick evolution, it is likely to remain a big player in the threat landscape in the future.
  • 07 de marzo de 2023
    Nuestro informe anual de ciberseguridad arroja luz sobre las principales preocupaciones de seguridad que surgieron y prevalecieron en 2022.
  • 23 de febrero de 2023
    Our research paper shows how decision-makers that are in a position to affect ransomware at scale – including policy-makers and industry leaders – can use data-science approaches to understand ransomware risk holistically and build cybersecurity strategies that can affect the ransomware ecosystem as a whole.