The Cybersecurity and Infrastructure Security Agency (CISA), the FBI, and international cybersecurity partners have issued an advisory about the LockBit ransomware operation. Since 2020, LockBit has extorted $91 million from US organizations through 1,700 attacks. The ransomware-as-a-service (RaaS) operation is the most prolific of its kind, accounting for 16% of ransomware attacks on state, local, tribal, and tribunal governments in 2022. The group targets organizations of all sizes, including critical infrastructure entities such as financial services, food & agriculture, education, and healthcare. LockBit’s success is attributed to its fast payment to affiliates, user-friendly interface for less technically skilled affiliates, and publicity-generating exercises. The advisory provides details on the tactics, techniques, and procedures used in LockBit attacks over the past three years, along with a list of mitigations to help network defenders improve their defenses. It also includes information on freeware and open source tools used by LockBit affiliates, known exploited CVEs, and over 40 MITRE ATT&CK techniques.
Source: www.hipaajournal.com
To mitigate potential threats, it is important to implement additional cybersecurity measures with the help of a trusted partner like INFRA www.infrascan.net or you can try your self using check.website.