LockBit 3.0 Ransomware Attack on BRFibra Telecomunicações Ltda
Incident Date:
May 9, 2024
Overview
Title
LockBit 3.0 Ransomware Attack on BRFibra Telecomunicações Ltda
Victim
BRFIBRA TELECOMUNICACOES LTDA
Attacker
Lockbit3
Location
First Reported
May 9, 2024
Ransomware Attack on BRFibra Telecomunicações Ltda by LockBit 3.0
Company Profile and Attack Details
BRFibra Telecomunicações Ltda, also known as BR Digital Telecom, is a company operating in the ICT sector, particularly as an Internet Service Provider in Brazil. The company was recently targeted by LockBit 3.0, a ransomware group.
The company offers a range of services and products related to telecommunications and technology. BRFibra stands out in the industry due to its significant presence in the Brazilian market as an Internet Service Provider, providing essential connectivity services to businesses and individuals. However, this also makes them a prime target for threat actors seeking to disrupt critical infrastructure and data networks.
LockBit 3.0, a Ransomware-as-a-Service (RaaS) group, distinguishes itself by its advanced capabilities and evasive techniques. The group has been actively recruiting affiliates and expanding its attack volume across various devices and operating systems. LockBit 3.0's ability to move laterally through a network via group policy updates and cover its tracks by deleting traces of itself makes it a formidable threat. The group's adoption of an affiliate-based ransomware approach allows other cybercriminals to leverage their malware for attacks, increasing the reach and impact of their operations.
LockBit May Attacks
This ransomware attack on BRFibra Telecomunicações Ltda is part of the May 2024 attacks by LockBit 3.0. Following the disruption of its infrastructure in February during "Operation Cronos," LockBit swiftly resurfaced and targeted over 50 victims within hours of reactivating its platform. The group's adaptability and global reach were evident in the subsequent attacks that affected various sectors and countries. LockBit's resurgence highlights the need for enhanced international cooperation and proactive measures to combat cybercrime effectively.
Sources:
- BRFibra Telecomunicações Ltda Website
- DevelopmentAid - BR Digital Telecom
- BNamericas - BRFibra
- Dun & Bradstreet - BRFibra Telecomunicações Ltda
- LinkedIn - BR Fibra Telecomunicações
- VMware - LockBit 3.0
- SentinelOne - LockBit 3.0
- Trend Micro - LockBit Ransomware Group
- Times of India - LockBit 3.0
- Wazuh - Detecting LockBit 3.0 Ransomware
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.