LockBit Claims YKK Ransomware Attack, Sets 14 Day Deadline


LockBit ransomware group has claimed to hit YKK Group, the world’s largest zipper manufacturer, and has given the company a two-week deadline to fulfil their demands.

Taking responsibility for the YKK ransomware attack, the hacker collective listed the Japanese manufacturing company on their leak site. However, they have not shared details of the alleged YKK data breach.

The Cyber Express has reached out to the YKK Group to get a confirmation of the alleged YKK ransomware attack. We will update the copy when we get a response.

Image
(Photo: Dominic Alvieri/ Twitter)

YKK Group ransomware attack

Security researcher Dominic Alvieri, posted a screenshot of the YKK ransomware attack claims by the hacker group along with a caption that read, “The world’s largest zipper manufacturer YKK Group of Japan, has allegedly been breached by LockBit.”

YKK Ransomware Attack
Screenshot of LockBit’s post (Photo: Dominic Alvieri/ Twitter)

It is unclear how much data the LockBit ransomware group exfiltrated or how the alleged cyber attack on the YKK Group was conducted.

LockBit Ransomware Group’s Trail of Attacks

LockBit has been the most active and attacking ransomware group this year. Prior to the alleged YKK ransomware attack, LockBit has been targeting several educational institutions, including Saint Francis Prep Catholic High School in New York.

They have also targeted Affinity Health Services, which offers senior community management and consulting services.

YKK Ransomware Attack
Screenshot of LockBit’s website (Photo: Dominic Alvieri/ Twitter)

Affinity Health Services, based in Pennsylvania, was given a deadline of May 26 to fulfil the ransom payment demand.

The group claimed to have stolen 110GB of data from the Affinity Health Services cyber attack. However, the above screenshot stated that it was part 1 of the stolen data they were about to release, indicating they might have more data.

Image
Screenshot of LockBit’s website (Photo: Dominic Alvieri/ Twitter)

Kyocera AVX has also been threatened with a data leak post on the website of the LockBit ransomware group.

The company is a leading manufacturer of advanced electronic components from the United States. LockBit gave them a deadline of June 9, according to its dark web post. “All available data will be published.” the group wrote.

Image
LockBit’s leak website (Photo: Dominic Alvieri/ Twitter)

The Wianno Club, a private seasonal club, was given a deadline of June 15.

Ransomware Threat Landscape Report

In their Q1-2023 ransomware threat landscape report, threat intelligence provider Cyble highlighted the notorious activities of the group.

“LOCKBIT claimed a massive increase in attacks and remained the most active and perfidious ransomware group, undermining the cyber integrity of nearly 300 entities in Q1-2023 alone,” stated the report.

The report also noted the emergence of new ransomware groups such as Dark Power, DarkB!t, MortalKombat, Money Message, and Nevada.

Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.





Source link