Skip to Content
Get started
Open search
Focus Scroll Background

LockBit Ransomware

RSS
broken-lock

Threat Research

Adobe ColdFusion

cryptominers

featured

LockBit Ransomware

LoLBINs

Sophos X-Ops

Ransomware actor exploits unsupported ColdFusion servers—but comes away empty-handed

October 19, 2023

Ransomware

Security Operations

Threat Research

AnyDesk

featured

LockBit Ransomware

Mega

mimikatz

Ransomware

RDP Brute Forcer

RDP Multi Tool

ScreenConnect

Attackers linger on government agency computers before deploying Lockbit ransomware

April 12, 2022

banner-02-1200×628

Security Operations

Avaddon

Clop ransomware

Conti

DarkSide

Egregor

Featured

LockBit Ransomware

Maze ransomware

Ragnar Locker ransomware

REvil

Sophos Rapid Response

Threat Research

The Top 10 Ways Ransomware Operators Ramp Up the Pressure to Pay

October 28, 2021

Sophos-news-banner-1200x628px-2

Threat Research

BlackMatter

DarkSide

Encryption

featured

LockBit Ransomware

Ransomware

REvil

BlackMatter ransomware emerges from the shadow of DarkSide

August 9, 2021

stormtrooper_lego_egg_hatch_hatched_begin_beginning_birth-629593

SophosLabs Uncut

Attack Tools

Defense evasion

LockBit Ransomware

Malicious Google documents

Powershell

Powershell Empire

LockBit uses automated attack tools to identify tasty targets

October 21, 2020

800px-5-digit_Wordlock_locked_with_combination_Basin_and_hardened_shackle

SophosLabs Uncut

Threat Research

data breach

exfiltration

I/O Completion Ports

IOCP

LockBit Ransomware

UAC Bypass

User Account Control

LockBit ransomware borrows tricks to keep up with REvil and Maze

April 24, 2020