Lockbit Attacks Chicago Extruded Metals

By Miklos Zoltan . 5 February 2024

Founder - Privacy Affairs

Fact-Checked this

Lockbit took responsibility for another ransomware attack against Chicago-based extruded metals. The attack resulted in the victim losing a considerable amount of confidential data.

As posted by Lockbit itself, some of the data they’ve stolen includes tax return sheets, client data base, employees information, financial data, etc.
Chicago Extruded Metals didn’t comment on the event and it’s unclear whether the negotiations have completed
According to Lockbit’s leak post, the deadline for negotiations was today, 5^th of February, 2024
Lockbit is known to use very aggressive negotiation tactics, causing many victims to prefer having their data leak than pay the ransom

Lockbit has become considerably more active over the past few months, with news of ransomware attacks popping out every other day. The organization has also expanded its reach and influence.

Many attacks take place in bulk, with Lockbit targeting multiple victims from several countries at the same time. Not only that, but the ransomware sphere has visibly grown its activity recently.

As stated by public and private investigative agencies, the number of cybercriminal actors appears to be on the rise. Some are completely new entities, while others are successors of older ones.

X showing the LockBit attack on Chicago Extruded Metals — https://twitter.com/FalconFeedsio/status/1754391906522485168

Lockbit’s reputation precedes it. The organization currently ranks among the most aggressive, successful, resourceful, and adaptable in the world. A recent investigation assessed the group’s activity over the span of 3 years, between 2020 and 2023.

The findings were troubling to say the least. Lockbit recorded approximately 1,700 victims and over $91 million in profits up to May of 2023. The situation has likely changed dramatically, considering the group’s increased activity recently.

Why Lockbit Is Such a Threat

Lockbit’s owes much of its success to its power of innovation. Unlike standard cyberthreat actors, Lockbit is highly diligent and adaptable. The group was first observed in 2019, but only established itself as a legitimate threat in 2021.

That’s when the 2.0 version came out. This new version came with an additional malware tool called Stealbit. This piece of code was designed to automate the exfiltration data, allowing Lockbit to encrypt and steal more data than ever before.

Naturally, this would give the organization a lot of leverage during negotiation, which probably explains the group’s merciless attitude during talks. They rarely accept to lower the ransom and never compromise in case the victim can’t afford to pay.

Then, in June of 2022, Lockbit 3.0 came out after 2 months of beta testing. This not only improved Lockbit’s potential, but also opened the door to new business opportunities.

The group invited security companies to test their brand new software and highlight any weaknesses, if any. They offered rewards between $1,000 and $1 million for that, based on the findings. This allowed the group to strengthen their malware even more.

Today, Lockbit still qualifies as the most aggressive and frightening ransomware actor and the situation isn’t likely to change anytime soon. If you believe you’re at risk of ransomware attacks, the general recommendation is to boost your defenses considerably.

Resorting to specialists to help you in this sense is a must!

Our Mission

We believe security online security matters and its our mission to make it a safer place.

Founder & CEO Privacy Affairs

Miklos Zoltan is the founder and CEO of Privacy Affairs. Miklos has long-time experience in cybersecurity and data privacy having worked with international teams for more than 10 years in projects involving penetration testing, network security and cryptography.

Miklos founded Privacy Affairs in 2018 to provide cybersecurity and data privacy education to regular audiences by translating tech-heavy and "geeky" topics into easy-to-understand guides and tutorials.

Cookie	Duration	Description
CookieLawInfoConsent	1 year	CookieYes sets this cookie to record the default button state of the corresponding category and the status of CCPA. It works only in coordination with the primary cookie.
viewed_cookie_policy	1 year	The GDPR Cookie Consent plugin sets the cookie to store whether or not the user has consented to use cookies. It does not store any personal data.
wpEmojiSettingsSupports	session	WordPress sets this cookie when a user interacts with emojis on a WordPress site. It helps determine if the user's browser can display emojis properly.

Cookie	Duration	Description
_ga	1 year 1 month 4 days	Google Analytics sets this cookie to calculate visitor, session and campaign data and track site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognise unique visitors.
_ga_*	1 year 1 month 4 days	Google Analytics sets this cookie to store and count page views.
_gat_UA-*	1 minute	Google Analytics sets this cookie for user behaviour tracking.
_gid	1 day	Google Analytics sets this cookie to store information on how visitors use a website while also creating an analytics report of the website's performance. Some of the collected data includes the number of visitors, their source, and the pages they visit anonymously.
_omappvp	1 year 1 month 4 days	The _omappvp cookie is set to distinguish new and returning users and is used in conjunction with _omappvs cookie.
_omappvs	20 minutes	The _omappvs cookie, used in conjunction with the _omappvp cookies, is used to determine if the visitor has visited the website before, or if it is a new visitor.

Lockbit Attacks Chicago Extruded Metals

Why Lockbit Is Such a Threat

Our Mission

Miklos Zoltan

Leave a Comment Cancel