Search

LockBit Ransomware Group Reportedly Suffers Data Breach, Extortion Tactics Revealed

LockBit group’s admin and affiliate panels were reportedly defaced and replaced with a message and link to MySQL database.

Advertisement
Highlights
  • The panels said to show the message “Don’t do crime[.]Crime is bad”
  • The MySQL database dump reportedly contains twenty tables
  • It also shows negotiation messages between LockBit and victims
LockBit Ransomware Group Reportedly Suffers Data Breach, Extortion Tactics Revealed

As many as 75 admin and affiliate names were also listed in a “users” table

Photo Credit: Unsplash/Desola Lanre-Ologun

LockBit, the notorious ransomware group, reportedly suffered a massive data breach on Wednesday. As per the report, the group's dark web platform's admin and affiliate panels were compromised to show a message and link to a MySQL database dump. The database reportedly contains 20 tables that include sensitive information around the cybercriminal group's affiliate network, extortion tactics, details around malware builds, as well as nearly 60,000 Bitcoin addresses. Notably, this is the second time the ransomware group has been hacked, with the previous attack occurring in 2024.

LockBit Hack Reveal Insights Into The Gang's Workings

The data breach was first spotted by X (formerly known as Twitter) user Rey, who posted a screenshot of the admin panel. All of the admin and affiliate panels were reportedly taken over to display the message, “Don't do crime[.]CRIME IS BAD xoxo from Prague.” The text is followed by the MySQL link "paneldb_dump.zip."

According to a BleepingComputer report, the link leads to a MySQL file containing a massive database. The data reportedly features 20 different tables, where some tables revealed information about how the ransomware group functioned, as well as its malware builds.

One of the tables, labelled “btc_addresses,” reportedly features as many as 59,975 unique Bitcoin addresses. Another “builds” table is said to feature individual malware builds that were created by the group's affiliates. These are said to be different versions of the same ransomware that the group used to attack others. Some of the builds reportedly also mentioned the names of the targeted companies. This table is also said to feature public keys to the builds, but no private keys. Private keys are necessary to access the ransomware.

Apart from this, the database reportedly featured a “builds_configurations” that revealed information about different configurations used for each version of the malware. The most interesting information, however, was reportedly contained in the “chats” table.

The table is said to contain 4,442 negotiation messages between the LockBit ransomware operators and victims. The messages reportedly were dated between December 19, 2024 and April 29. This list highlighted different extortion techniques used by the gang.

Further, a “users” table reportedly revealed the names of 75 admins and affiliates of the group. These names were said to belong to individuals who had access to the panels. Additionally, the table also contained passwords used by the admins in plaintext.

In a separate post, Rey shared a conversation with a LockBit operator, who goes by the username “LockBitSupp”, confirming the data breach. The operator stated that the source code of the ransomware and private keys were not lost during the hack. The group or individual behind the LockBit hack is currently not known.

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

 
Show Full Article
Please wait...
Advertisement
Popular Mobile Brands
  1. Oppo Reno 14FS 5G Design and Specifications Leaked: Check Expected Price
  1. Oppo Reno 14FS 5G Price, Design and Specifications Leaked Ahead of Anticipated Debut
  2. Samsung Galaxy A07 Listed on Google Play Console With Design, Key Specifications: Report
  3. Microsoft SharePoint Hack: Probe on Whether Chinese Hackers Found Flaw via Alert
  4. Samsung Reportedly in Talks With OpenAI, Perplexity to Offer Gemini AI Alternatives on Galaxy S26 Series
  5. Redmi 15 Design Renders, Specifications Leaked; Tipped to Arrive in Three Colourways
  6. Google Pixel 10 Pro, Pixel 10 Pro XL Spotted in Moonstone Colourway Alongside Pixel Buds 2a and Pixel Watch 4
  7. Meta Names ChatGPT Co-Creator Shengjia Zhao as Chief Scientist of Superintelligence Lab
  8. Who-Fi: An AI-Powered Wi-Fi Technology That Can Identify and Track Individuals Without Cameras
  9. NASA’s X-59 Moves Closer to First Flight with Advanced Taxi Tests and Augmented Vision
  10. Unusual Plasma Waves Above Jupiter’s North Pole Can Possibly Be Explained
© Copyright Red Pixels Ventures Limited 2025. All rights reserved.
Trending Products »
Latest Tech News »