PANews reported on May 8th that according to Cointelegraph, the Dark Web associated panel of the LockBit ransomware gang was hacked, resulting in the leak of nearly 60,000 Bit addresses. These addresses are related to LockBit's ransomware infrastructure, and the leaked data includes a MySQL database dump containing cryptocurrency-related information that may help blockchain analysts track the gang's illegal fund flows.
Although the addresses were exposed, no private keys were leaked. The leaked database contains 20 tables, including a "builds" table that records the ransomware versions created by the organization's members, and a "chats" table that records over 4,400 negotiation messages with victims.
Analysis suggests that this incident may be related to a vulnerability in the Everest ransomware site, as both use similar information prompts.
