This article has been indexed from Softpedia News / Security
LockBit RaaS have begun fresh attacks on workers of various businesses in Taiwan, Italy, the United Kingdom and Chile, offering them millions of dollars in exchange for providing valid credentials for first access, says Trend Micro.
Unlike the 2019 version, LockBit 2.0 targets Active Directory and automatically encrypts devices across all Windows domains. Trend Micro considers it one of the fastest and most efficient encryption techniques on the market, as it uses multithreading for encryption and it only fully enciphers 4 KB of data per file.
The investigation revealed that LockBit 2.0 uses several tools to connect to a system. A network scanner examines the network to identify the target domain controller. At the same time, it uses batch files to terminate security tools, enable RDP connections, delete Windows Event l…
Read the original article: LockBit Ransomware Is Back with a 2.0 Improved Version