Project Hyphae
Search

FBI Issues APB: Lockbit 2.0

Share This Post

FBI Issues warning to be on the lookout for Lockbit 2.0 IoCs

The FBI has issued a flash report detailing Lockbit 2.0 Ransomware-as-a-Service tactics along with a growing list of Indicators of Compromise. The threat actors utilize multiple avenues to gain access to the victim’s network, then deploy tools to elevate privileges, exfiltrate the victim’s data, and execute the LockBit encryption malware. The attack is followed up with demands to pay the ransom or have the stolen data published on the internet.

Lockbit 2.0 is now upgraded to utilize Active Directory group policy to auto-encrypt domain connected devices, as well as abuse vulnerabilities in VMWare ESXi virtual machines.

FBI Flash Report: https://www.ic3.gov/Media/News/2022/220204.pdf



Reach out to our incident response team for help

More To Explore

Information Security News – 1/5/2026

The 10 Biggest Cyber Stories of 2025: A Year of Record-Breaking Attacks Article Link: https://www.probablypwned.com/article/top-10-cyber-stories-2025-year-in-review The Evolution of Information Security: From Compliance to Resilience Article

Jo Moldenhauer January 5, 2026

Information Security News – 12/22/2025

Flaw in Hacktivist Ransomware Lets Victims Decrypt Own Files Article Link: https://www.darkreading.com/threat-intelligence/flaw-hacktivist-ransomware-victims-decrypt-files Initial Access Brokers Involved in More Attacks, Including on Critical Infrastructure Article Link:

Jo Moldenhauer December 23, 2025

Do You Want to Shore Up Your Defenses?

We're opening our first round of threat hunting engagements to 100 organizations. Sign up or join the wait list here.