Late last month, the U.S. Department of Justice, the U.K. National Crime Agency (NCA), the Federal Bureau of Investigation (FBI), and a host of international law enforcement agencies effectively locked the #LockBit #ransomware gang out of its own infrastructure. This criminal gang, believed to be responsible for the current attack on the Fulton County government in Georgia, has lost control of its public-facing websites and other servers, hindering its ability to victimize individuals and organizations.
Moreover, the seizure by international law enforcement unlocks a trove of content that could aid current and prior victims, notably including decryption keys (that could be shared with victims to recover their data). As if the disruption were not enough good news, the DoJ unsealed indictments today for two Russian nationals involved in deploying #LockBit worldwide.
#Kudos to this enormously complicated and coordinated response to a sophisticated #ThreatActor. For years, our foreign policy has been seeking to catch up with our cyber capability, and it’s rewarding to see these two things coalesce in an action like this. Job well done, all!
#AisA #cybercrime #digitalforensics #karma #justice #forensicinvestigation #lawenforcement #cyberattack #forensicengineering #ransomwareattack #encryption #dfir