According to an announcement made at a cybersecurity conference in Boston, the FBI is urging those affected by LockBit extortion attacks to seek assistance. The FBI revealed that they possess more than 7,000 decryption keys that can help victims restore their encrypted data free of charge.
The operation to dismantle Lockbit was a coordinated global effort involving agencies from 11 different countries. In February, law enforcement agencies executed operations to dismantle LockBit infrastructure and impose sanctions on those involved with the group. As a result, over 7,000 decryption keys were seized.
An analysis of the seized data indicated that Lockbit and its affiliates amassed approximately $1 billion in ransom payments from carrying out 7,000 attacks on organizations worldwide between June 2022 and February 2024. The FBI is encouraging all victims to report their cases to the Internet Crime Complaint Center.
Despite the law enforcement efforts to shut down Lockbit, the group remains active. In April 2024, Lockbit claimed responsibility for cyber attacks on the Canadian pharmacy network London Drugs and Boeing. This came after a law enforcement operation revealed the alleged identity of the Lockbit leader, known as LockBitsepp. In response, LockBitsepp denied all accusations and accused the FBI of constructing a false case.