Project Hyphae
Search

FBI Issues APB: Lockbit 2.0

Share This Post

FBI Issues warning to be on the lookout for Lockbit 2.0 IoCs

The FBI has issued a flash report detailing Lockbit 2.0 Ransomware-as-a-Service tactics along with a growing list of Indicators of Compromise. The threat actors utilize multiple avenues to gain access to the victim’s network, then deploy tools to elevate privileges, exfiltrate the victim’s data, and execute the LockBit encryption malware. The attack is followed up with demands to pay the ransom or have the stolen data published on the internet.

Lockbit 2.0 is now upgraded to utilize Active Directory group policy to auto-encrypt domain connected devices, as well as abuse vulnerabilities in VMWare ESXi virtual machines.

FBI Flash Report: https://www.ic3.gov/Media/News/2022/220204.pdf



Reach out to our incident response team for help

More To Explore

Information Security News – 12/8/2025

ShadyPanda Turns Popular Browser Extensions with 4.3 Million Installs into Spyware Article link: https://thehackernews.com/2025/12/shadypanda-turns-popular-browser.html University of Pennsylvania Joins Victims of Clop’s Oracle EBS Raid Article

Marcus Cylar December 8, 2025

Information Security News – 12/1/2025

Qilin Ransomware Turns South Korean MSP Breach Into 28-Victim ‘Korean Leaks’ Data Heist Article Link: https://thehackernews.com/2025/11/qilin-ransomware-turns-south-korean-msp.html Emergency Alerts Go Dark After Cyberattack on OnSolve CodeRED

Jo Moldenhauer December 2, 2025

Do You Want to Shore Up Your Defenses?

We're opening our first round of threat hunting engagements to 100 organizations. Sign up or join the wait list here.