lockbit3 attacks upLexis

Incident Date: Aug 28, 2022

Attack Overview
VICTIM
upLexis
INDUSTRY
Business Services
LOCATION
Brazil
ATTACKER
Lockbit
FIRST REPORTED
August 28, 2022

upLexis Suffers Ransomware Attack by Lockbit3

upLexis, a Brazilian company specializing in background checks and due diligence, has been targeted by the ransomware group Lockbit3. The attack was announced on the group's dark web leak site. The company operates in the Business Services sector, providing a platform for businesses to streamline background check and due diligence processes.

Company Overview

upLexis offers a platform called upMiner, which is designed to help businesses collect information about individuals and companies. The platform aims to simplify and improve the process of background checks and due diligence, enhancing the efficiency of risk analysis and strategic decision-making.

Vulnerabilities and Targeting

The specific vulnerabilities that led to the successful attack by Lockbit3 are not detailed. However, ransomware attackers often exploit software vulnerabilities, use brute-force credential attacks, engage in social engineering, leverage previously compromised credentials, or abuse trust opportunities.

Response and Mitigation

The Cybersecurity and Infrastructure Security Agency (CISA) provides a comprehensive guide for responding to ransomware attacks, including detection and analysis, preserving evidence, and following trusted guidance for the specific ransomware variant. It is crucial for organizations to have a plan in place to prevent, detect, respond to, and recover from ransomware attacks.

The ransomware attack on upLexis by Lockbit3 underscores the critical importance of cybersecurity measures for businesses across all sectors. Companies should be vigilant about potential vulnerabilities and take proactive steps to protect their systems from ransomware and other cyber threats.

Sources

Disclaimer

The Halcyon Attacks Lookout Database is compiled using publicly available information based on the hosting choices of real-world threat actors and data from a variety of trackers. This information is provided in accordance with principles of fair use. Halcyon has made reasonable efforts to sanitize and verify the data; however, we do not guarantee the accuracy, completeness, or reliability of the information provided. Updates to the database are made as new source data becomes available from reputable sources.  By accessing, viewing, or using the information within the Halcyon Attacks Lookout Database, you acknowledge and agree to do so entirely at your own risk. No reliance should be placed upon the information for decision-making, and Halcyon disclaims all liability for any inaccuracies or omissions in the data.

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

1
2
3
Let's get started
1
1
2
3
1
1
2
2
3
Back
Next
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.