Hackers from Prague Strike Back at LockBit: Dark Web Drama Unfolds

LockBit's Dark Secrets Exposed

Hold onto your hats, folks! A daring crew claiming to be from Prague has just pulled off a cyber heist that's shaking the ransomware world to its core. They've hijacked LockBit's dark web panel and spilled the beans on everything - from their internal systems to their Bitcoin wallets. It's like watching a thriller movie unfold in real-time!

The Hack Heard Around the Cyber World

LockBit, those notorious ransomware bad boys, got a taste of their own medicine when these Prague hackers not only leaked their juicy internal data but also left a savage message, poking fun at them. Talk about karma!

The Loot: Bitcoin Wallets, Credentials, and More

Get this - blockchain security gurus at SlowMist dropped a bombshell in their Thursday blog post. The leaked data package? Over 60,000 Bitcoin (BTC) addresses, around 75 user credentials, and even ransom negotiation logs. And guess what? One of those records hinted at a ransom possibly being paid from a Coinbase account. This is getting wilder by the second!

How'd They Do It?

These hackers didn't just stop at leaking data. They also got their hands on LockBit's lightweight PHP-based management platform. SlowMist's analysts are speculating that the Prague hacker exploited a PHP 0-day or 1-day vulnerability to pull off this epic breach. It's like something straight out of a spy novel!

"[...] we speculate that the hacker from 'Prague' likely exploited a PHP 0-day or 1-day vulnerability to compromise the web backend and management console."

SlowMist

LockBit's Damage Control

LockBit, not one to stay silent, fired back in Russian on their official channel. When asked if they got "pwned," they claimed that "only the lightweight panel with an authorization code was breached." They're trying to reassure everyone that "no decryptors were stolen, and no company data was affected." But can we really trust them at this point?

Reputation on the Line

When pressed about the impact on their reputation, LockBit admitted that it "affects" them but insisted that the source code "was not stolen" and they're "already working on recovery." The irony? They're now offering a bounty for info on the hacker, even though the U.S. government had previously put up to $15 million on the table for dirt on LockBit members. Talk about a plot twist!