LockBit 5.0 Ransomware VS SentinelOne – Detection and Mitigation

In this video, we show how the SentinelOne Singularity XDR detects and mitigates LockBit 5.0, a cyber threat that emerged in July 2024 as an unofficial offshoot of LockBit.

LockBit 5.0 is a rogue variant of LockBit Black (aka LockBit 3.0). LockBit 5.0 is another example of the ongoing trend around the proliferation of leaked ransomware builders and their subsequent embrace by the greater cybercrime ecosystem.

Key Highlights:
-LockBit 5.0 payloads are built with a leaked version of the LockBit 3.0 builder and subsequently packed and ‘branded’ as a new variant of LockBit.
-Threat actors behind LockBit 5.0 are distributing payloads via Amadey stealer and DarkGate as a multi-stage campaign.
-LockBit 5.0 ransom notes instruct the victim to communicate with the attacker via TOX messenger.
-Protective measures and recommendations for organizations to safeguard against such ransomware attacks, emphasizing the role of advanced cybersecurity solutions like SentinelOne Singularity.

Watch the video to learn technical details, operational tactics, and mitigation strategies surrounding LockBit 5.0 Ransomware. Whether you’re a cybersecurity professional, a business leader, or simply keen on understanding the dynamics of modern cyber threats, this video offers valuable insights into protecting your digital assets in an increasingly hostile cyber environment.

~Subscribe to our channels:~
Website: https://www.sentinelone.com/
LinkedIn: / sentinelone
Twitter: / sentinelone
Facebook: / sentinelone
Instagram: / sentinelsec
Threads: https://www.threads.net/@sentinelsec