LockBit 3.0 Ransomware Attack on UF Resources Corporation

Incident Date: May 09, 2024

Attack Overview

VICTIM

UF Resources Corporation

INDUSTRY

Holding Companies & Conglomerates

LOCATION

USA

ATTACKER

Lockbit

FIRST REPORTED

May 9, 2024

Request Removal

Ransomware Attack on UF Resources Corporation by LockBit 3.0

Victim Company Profile

UF Resources Corporation is an insurance and financial services holding company founded in 2008 and headquartered in University Park, Florida. The company provides a broad spectrum of services to its subsidiaries and partners, including finance, accounting, human resources, information technology, sales, marketing, and other related core infrastructure. UF Resources has a team of 24 employees and generated $5.7 million in revenue in 2023. The company's mission is to help its customers achieve their desired retirement lifestyle and provide them with peace of mind when working with UF Resources.

LockBit 3.0 Ransomware Group

The LockBit 3.0 ransomware group is an evolution of the LockBit group, operating as a Ransomware-as-a-Service (RaaS) group. LockBit 3.0, also known as LockBit Black, is considered one of the most dangerous and disruptive ransomware threats currently active. It encrypts files, modifies their filenames, changes the desktop wallpaper, and drops a ransom note on the victim's desktop. The ransomware is heavily obfuscated and protected against analysis, making it difficult for security researchers to study. LockBit 3.0 has features like lateral movement through a network via group policy updates and covering its tracks by deleting traces of itself.

Ransomware Attack Details

In this cyber incident, the victim website fell victim to a ransomware attack orchestrated by LockBit 3.0. Ransomware is a type of malicious software designed to block access to a computer system or files until a sum of money is paid. LockBit 3.0 employed this technique to encrypt the victim's data and demand payment for its release. The attack likely caused significant disruption and financial loss to the victim organization.

LockBit May Attacks

This is part of the May 2024 attacks by LockBit 3.0, a cybercriminal group, resurfaced with vigor following the disruption of its infrastructure in February during "Operation Cronos." LockBit swiftly returned, targeting over 50 victims within hours of reactivating its platform, with subsequent attacks adding to the tally. LockBit's recent activities targeted diverse industries globally, showcasing its global reach and adaptability.

Sources:

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.