• Skip to main content
  • Skip to primary sidebar
  • Skip to footer

Technologous - Managed IT Solutions Bryan/College Station

  • Home
  • About
    • Areas We Serve
    • Our Leadership
      • Chris Dawson
      • Ian Soares
  • IT Services
    • Managed IT
    • Support IT
    • Cloud IT
  • Blog
  • Request a Consultation
  • Contact
You are here: Home / Blog / Lockbit Hits Fast and Hard

Lockbit Hits Fast and Hard

Lockbit hits fast and hard, based on a detailed analysis of the code conducted by researchers at Sophos.

Lockbit hits fast and hard, based on a detailed analysis of the code conducted by researchers at Sophos.

Not all ransomware strains are equal. Some ransomware is slow burns that will infect a target system, expanding its reach for days or even weeks before striking and locking your business’ critical files. Other ransomware hits fast and hard. Lockbit hits fast and hard.

The research at Sophos states that from the time Lockbit breaches its target, Lockbit hits and will start encrypting files in as little as five minutes, which is so fast that it doesn’t allow your IT staff to respond to the attack. By the time your IT Staff becomes aware of the breach and begins deploying resources to minimize the damage, it’s usually over.

The research team discovered that once Lockbit hits and makes its way onto a target system, it will do a quick, keyword-based scan of network drives to locate the information most valuable to the team that inserted it.

Ransomware as a Service

This particular malware strain offers “Ransomware as a Service,” so the keywords Lockbit uses for this search will be different, depending on who pays for the service, whom they’re hitting, and what they’re most interested in acquiring. The hackers will copy the information they want before they start encrypting files.

In any case, the Lockbit hit doesn’t take long, and once done, the malware executes in memory via a Windows Management Instruction (WMI) command. The research team observes the attack begins in earnest in every case they studied, will lock files, within five minutes of issuing the WMI command. That’s as fast and brutal as it gets.

There’s still a lot the team doesn’t know about Lockbit hits, but they’re continuing to study both the code and the aftermath of the attacks made on corporate networks worldwide. They will continue updating the rest of us with their findings. None of the news is good, but it’s always better to know than not.

October 20, 2020 Filed Under: Blog Tagged With: lockbit, Ransomware

Primary Sidebar

GET OUR BLOG IN YOUR EMAIL!

Archives

  • November 2020
  • October 2020
  • September 2020
  • August 2020
  • July 2020
  • June 2020
  • April 2020
  • March 2020
  • February 2020
  • December 2019
  • November 2019
  • October 2019
  • September 2019
  • August 2019
  • July 2019
  • June 2019
  • May 2019
  • April 2019
  • March 2019
  • February 2019
  • January 2019
  • December 2018
  • August 2018

Tags

adobe android App Apple attack Attacks Breach Browser Chrome Compromised Credit Card Dark Web Data Database Data Breach Email Facebook gmail Google government hacker Hackers information Internet iOS iPhone malware Microsoft Microsoft Windows 10 office 365 Password Passwords patch Phishing ransomeware Ransomware Scam security Social Media Update Vulnerability Vulnerable Wifi Windows Windows 10

Footer

Contact Us

Address: 3091 University Drive, Unit 210, Bryan, Texas 77802
Phone: 979-217-1226

Our Blog

  • Mattel’s Response to Ransomware November 14, 2020
  • Corporate Networks Left Vulnerable November 13, 2020
  • Adobe Addresses 14 Security Flaws November 12, 2020
  • Capcom Victim of Ransomware Attack November 11, 2020
  • Cyber Attacks Target Hospitals November 6, 2020

Search

Follow Us

  • Facebook
  • Home
  • About
  • Resources
  • Contact
  • Our Leadership
  • Why Choose Us?
  • IT Services
  • Request a Consultation

Copyright © 2021| All Rights Reserved | Powered By Technologous, LLC | Log in