LockBit Tries to Distance Itself From Royal Mail Attack


What’s the term for when a ransomware group blames a geopolitically awkward attack it appears to have carried out on someone – anyone – else, just not them?

Let’s call it getting “Colonial Pipelined,” after the DarkSide group’s disastrous hit on that oil pipeline system led the crime group to kill its brand.

Is the same about to happen to LockBit? The prolific ransomware group has been tied to the recent disruption of Britain’s national postal system. On Wednesday, Royal Mail warned that it was unable to send any letter or parcels abroad due to a “cyber incident,” apparently so described because the cause of the system outage wasn’t immediately clear.