Project Hyphae
Search

FBI Issues APB: Lockbit 2.0

Share This Post

FBI Issues warning to be on the lookout for Lockbit 2.0 IoCs

The FBI has issued a flash report detailing Lockbit 2.0 Ransomware-as-a-Service tactics along with a growing list of Indicators of Compromise. The threat actors utilize multiple avenues to gain access to the victim’s network, then deploy tools to elevate privileges, exfiltrate the victim’s data, and execute the LockBit encryption malware. The attack is followed up with demands to pay the ransom or have the stolen data published on the internet.

Lockbit 2.0 is now upgraded to utilize Active Directory group policy to auto-encrypt domain connected devices, as well as abuse vulnerabilities in VMWare ESXi virtual machines.

FBI Flash Report: https://www.ic3.gov/Media/News/2022/220204.pdf



Reach out to our incident response team for help

More To Explore

Information Security News – 5/18/26

Ivanti Warns of New EPMM Flaw Exploited in Zero-Day Attacks Article Link: https://www.bleepingcomputer.com/news/security/ivanti-warns-of-new-epmm-flaw-exploited-in-zero-day-attacks/ RubyGems Suspends New Signups After Hundreds of Malicious Packages Are Uploaded Article

Aaron Rhoads May 18, 2026
Threats

Mini Shai-Hulud: The Worm That Ate npm

Fear Is the Dependency Killer. The “Mini Shai-Hulud” attack highlights how modern software supply chain threats are evolving beyond stolen developer credentials into direct compromise

Ben Hall May 12, 2026

Do You Want to Shore Up Your Defenses?

We're opening our first round of threat hunting engagements to 100 organizations. Sign up or join the wait list here.