Project Hyphae
Search

FBI Issues APB: Lockbit 2.0

Share This Post

FBI Issues warning to be on the lookout for Lockbit 2.0 IoCs

The FBI has issued a flash report detailing Lockbit 2.0 Ransomware-as-a-Service tactics along with a growing list of Indicators of Compromise. The threat actors utilize multiple avenues to gain access to the victim’s network, then deploy tools to elevate privileges, exfiltrate the victim’s data, and execute the LockBit encryption malware. The attack is followed up with demands to pay the ransom or have the stolen data published on the internet.

Lockbit 2.0 is now upgraded to utilize Active Directory group policy to auto-encrypt domain connected devices, as well as abuse vulnerabilities in VMWare ESXi virtual machines.

FBI Flash Report: https://www.ic3.gov/Media/News/2022/220204.pdf



Reach out to our incident response team for help

More To Explore

Information Security News – 10/27/2025

AWS Outage Exposes ‘Dangerous’ Over-Reliance on US Cloud Giants Article Link: https://www.datacenterknowledge.com/outages/aws-outage-exposes-dangerous-over-reliance-on-us-cloud-giants Microsoft Threatens to Ram Copilot into Exchange Server On-Prem Article Link: https://www.theregister.com/2025/10/23/copilot_exchange_server/ Ransomware

Marcus Cylar October 28, 2025

Information Security News – 10/20/2025

Arup’s $25M Deepfake Loss: Anatomy of an AI-Powered Scam Article Link: https://www.adaptivesecurity.com/blog/arup-deepfake-scam-attack U.S. Warns That Hackers Using F5 Devices to Target Government Networks Article Link:

Jo Moldenhauer October 24, 2025

Do You Want to Shore Up Your Defenses?

We're opening our first round of threat hunting engagements to 100 organizations. Sign up or join the wait list here.