LockBit Ransomware Group Claims U.S Federal Reserve Breach

The ransomware group known as LockBit has breached the U.S Federal Reserve and stolen a massive 33 terabytes of confidential banking data. The group made this claim public on their dark web leak site on June 23, 2024, and has threatened to release the data on June 25, 2024, at exactly 20:27:10 UTC.

The data allegedly obtained by LockBit is said to contain sensitive information regarding “Americans’ banking secrets” and intricate details of how the Federal Reserve manages money distribution across its twelve banking districts. The breach, if confirmed, could have severe consequences for both individual privacy and the broader financial landscape.

LockBit’s Bold Demands

LockBit has demanded that the Federal Reserve replace their current negotiator, whom they have harshly criticized. ““You better hire another negotiator within 48 hours, and fire this clinical idiot who values Americans’ bank secrecy at $50,000,” the ransomware group said.

🚨🚨🚨 #CyberAttack 🚨🚨🚨

🇺🇸 #USA: US Federal Reserve has been listed as a victim by the LockBit 3.0 ransomware group.

The hackers allegedly exfiltrated 33 TB of banking information.

Ransom deadline: 25th Jun 24.#Ransomware pic.twitter.com/JGC1YG7y4A

— HackManac (@H4ckManac) June 24, 2024

Meanwhile, experts in cybersecurity remain skeptical as LockBit has not shared any sample data to substantiate their claims. Brett Callow, a threat analyst from Emsisoft, described the group’s announcement as “complete and utter nonsense,” suggesting it may be a ploy to draw attention to their Ransomware-as-a-Service, which has been struggling lately.

Expert and Government Response

As of now, the Federal Reserve has neither confirmed nor denied the breach, maintaining a cautious stance amid these allegations. The claim is under scrutiny by cybersecurity professionals and governmental agencies, given the potential ramifications of such a breach on U.S. monetary policy and financial stability.

Did LockBit just hack the US Federal Reserve? pic.twitter.com/2nsQCxb8DO

— Eliyahu YHWH (@EliyahuYhwh) June 25, 2024

This incident is part of a broader pattern of aggressive actions by law enforcement against LockBit. Notable events include a significant disruption of LockBit’s operations by the FBI and other agencies in February. 

Moreover, the identity of LockBit’s alleged leader, Dmitry Khoroshev, was disclosed by the U.K.’s National Crime Agency in May 2024. The U.S. government has even placed a $10 million bounty for information leading to Khoroshev’s arrest or conviction.

Final Word

As the deadline approaches, all eyes will be on the potential fallout from this alleged data leak and its impacts on the security landscape, making it a critical moment for financial cybersecurity.

Related Reads:

• Devastating Human Cost of Ransomware Attacks
• Fulton County Falls Victim to the LockBit Ransomware Attack