Lorenz Ransomware Indicators of Compromise

Other | 05/06/2022

The Federal Bureau of Investigation (FBI) and US Treasury are issuing this joint Cybersecurity Advisory (CSA) to share information about Lorenz ransomware, which actors have used to target multiple US and International organizations since 2021, resulting in losses totaling approximately $5,400,000 USD in Bitcoin. The US Government has observed Lorenz actors breach targeted entity networks, exfiltrate all unencrypted data, and encrypt the original data. The stolen data is then posted for sale on the Lorenz The Onion Router (TOR) leak site to pressure the victims to pay a ransom. If the victim does not pay the ransom, the actors release the stolen data publicly.

To read more, please log in