In a landmark operation against cybercrime, the UK's National Crime Agency (NCA) has dismantled Lockbit, the world's most prolific criminal ransomware group. Emerging in 2020 and rooted in Russian-language forums, Lockbit's exact origins remain elusive, but its impact is undeniable. The group has left over 2,000 global victims in its wake, securing over $120 million in ransoms while often demanding even more. Their modus operandi involves encrypting critical data and extorting organizations for its release.
Lockbit has been particularly active in the United States, affecting more than 1,700 organizations. However, its reach extended to Africa, with a notable attack on Egypt's leading e-payment provider, Fawry, last November. The incident led to the encryption of files and the alleged leak of personal data including addresses, phone numbers, and birth dates.
The NCA's breakthrough came through international collaboration, leading to the seizure of 34 Lockbit servers, the arrest of two affiliates, the freezing of 200 cryptocurrency accounts, and the shutdown of 14,000 illicit accounts. This operation marks a significant victory in the fight against cyber extortion, with perpetrators facing severe legal repercussions under UK law.