LockBit's Dark Web Domains Hacked, Internal Data and Wallets Leaked - #LockBit
The LockBit ransomware group has been at the center of numerous cyber incidents and law enforcement actions throughout 2025. Exploiting vulnerabilities in popular software like Atlassian Confluence and Fortinet firewalls, LockBit affiliates have demonstrated rapid attack capabilities, often deploying ransomware within hours of initial access. Their tactics have evolved to include automated deployment through botnets and the development of new strains like SuperBlack. Despite significant disruptions from international law enforcement operations, including sanctions against supporting infrastructure and arrests of key members, LockBit-affiliated actors continue to pose threats. The group's resilience was further tested when their dark web domains were hacked, exposing internal data and Bitcoin wallet addresses. These events highlight the ongoing cat-and-mouse game between cybercriminals and law enforcement, emphasizing the critical need for robust cybersecurity measures and prompt vulnerability patching.