LockBit 3.0 Ransomware Attack on Brockington College
Incident Date:
May 9, 2024
Overview
Title
LockBit 3.0 Ransomware Attack on Brockington College
Victim
Brockington College
Attacker
Lockbit3
Location
First Reported
May 9, 2024
Ransomware Attack on Brockington College by LockBit 3.0
Victim Profile
A successful Church of England 11-16 provider located in England, Brockington College, was targeted by the LockBit 3.0 ransomware group in a recent cyberattack. The college is part of the Embrace Multi Academy Trust and has a capacity of 1200 students, with 1189 pupils currently enrolled. It operates under a non-selective admissions policy and is known for its outstanding academic performance and strong pastoral support system.
Company Size and Industry Standing
Brockington College has reported revenue of $15.7 million and is recognized for its commitment to spiritual growth and development. The school's values, including 'Compassion', 'Justice', and 'Perseverance', set it apart in the education sector. It is governed by a local governing body and has been assessed as an "Outstanding" school by Ofsted.
Vulnerabilities and Targeting
The cybercriminal group LockBit 3.0 targeted Brockington College's website in a ransomware attack. During the breach, 54 GB of sensitive data, such as invoices, employees’ data, financial information, and personally identifiable information (PII), was stolen. The school's unique Christian ethos and strong academic reputation may have made it an attractive target for threat actors.
Ransomware Group Distinction
LockBit 3.0, also known as LockBit Black, is a Ransomware-as-a-Service (RaaS) group that has been actively recruiting affiliates and expanding its attack volume across various devices and operating systems. The ransomware encrypts files, modifies filenames, and drops ransom notes on victims' desktops. It is known for its advanced infection capacities, customization options, and evasive techniques that make it challenging to detect and defend against.
h2>LockBit May Attacks
This ransomware attack on Ajuntament de Calvià Mallorca is part of the May 2024 attacks by LockBit 3.0. Following the disruption of its infrastructure during "Operation Cronos," LockBit swiftly resurfaced and targeted over 50 victims within hours of reactivating its platform. The group's adaptability and global reach highlight the challenges faced by law enforcement agencies in combating cybercrime effectively. LockBit's resurgence underscores the need for enhanced international cooperation and proactive measures to address evolving threats in the cybersecurity landscape.
Sources:
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.