26 July 2022

Lockbit ransomware gang claims to have stolen 100 GB of data from Italian tax agency


Lockbit ransomware gang claims to have stolen 100 GB of data from Italian tax agency

The Lockbit ransomware gang announced they have breached Italy’s Revenue Agency (L’Agenzia delle Entrate) and stolen a large trove of data.

Over the weekend, the gang has added the Italian government agency to the list of victims on their dark web data leak website. Lockbit claimed to have stolen 78 GB of files from the agency, including documents, scans, financial reports, and contracts.

The ransomware operators gave the agency about six days to respond before the information is leaked. The group then extended the deadline to August 1 and announced it now had 100 GB worth of data. They also provided several screenshots of the data they allegedly stolen.

However, Sogei, an IT company tasked with the investigation of the alleged hack, said that there is no evidence that the tax agency has suffered a breach.

“Sogei spa informs that from the first analyzes carried out, no cyber attacks have occurred or data has been stolen from the financial administration's technological platforms and infrastructures. From the technical checks carried out, Sogei therefore excludes that a computer attack on the Revenue Agency website may have occurred,” the company said in a lengthy statement.

Last month, the Lockbit ransomware gang announced the launch of Lockbit 3.0, a new ransomware-as-a-service offering and a bug bounty program. The group said they will pay out between $1,000 and $1 million to security researchers and ethical or unethical hackers for information about vulnerabilities in their website, the ransomware encryption process, the Tox messaging app, and issues exposing their Tor infrastructure.


Back to the list

Latest Posts

Cyber Security week in review: December 2, 2022

Cyber Security week in review: December 2, 2022

The world in brief: Samsung, LG, Mediatek certificates used to sign Android malware, researchers detail new exploit framework, and more.
2 December 2022
Security researchers unintentionally crash KmsdBot botnet

Security researchers unintentionally crash KmsdBot botnet

The malware lacked an error-checking mechanism, which allowed the researchers to deactivate it.
1 December 2022
New Heliconia framework exploits n-day flaws in Chrome, Firefox and Microsoft Defender

New Heliconia framework exploits n-day flaws in Chrome, Firefox and Microsoft Defender

The researchers have linked the framework to a Spain-based software company.
1 December 2022