LockBit, known for its "ransomware-as-a-service" model, has been particularly disruptive, with Khoroshev allegedly receiving a 20% share of each ransom payment. The group has targeted over 100 hospitals and healthcare companies, forcing at least 2,110 victims into negotiation. The UK's National Crime Agency reports that between June 2022 and February 2024, more than 7,000 attacks were built using LockBit's services.
Key takeaways:
- The US, UK and Australian governments have sanctioned the leader of the LockBit ransomware group, Dmitry Yuryevich Khoroshev, a Russian national.
- Khoroshev is accused of conducting numerous hacks, tricking computer users into downloading malware, and demanding ransom to release encrypted data.
- The US Department of State has announced a reward of up to $10m for information leading to the identification or location of any senior individual in the LockBit group.
- Khoroshev faces a series of asset freezes and travel bans, and has been added to the UK’s sanctions list.