{"id":164988,"date":"2024-06-27T20:29:30","date_gmt":"2024-06-27T20:29:30","guid":{"rendered":"https:\/\/securityaffairs.com\/?p=164988"},"modified":"2024-06-27T20:33:21","modified_gmt":"2024-06-27T20:33:21","slug":"lockbit-has-not-hacked-federal-reserve","status":"publish","type":"post","link":"https:\/\/securityaffairs.com\/164988\/cyber-crime\/lockbit-has-not-hacked-federal-reserve.html","title":{"rendered":"LockBit group falsely claimed the hack of the Federal Reserve"},"content":{"rendered":"
<\/div>\n

The LockBit ransomware group seems to have lied when they announced the hack of the US Federal Reserve. The real victim is the Evolve Bank.<\/h2>\n\n\n\n

The LockBit ransomware group hasn’t hacked the Federal Reserve<\/a> as it has recently claimed, the real victim is the Evolve Bank.<\/p>\n\n\n\n

Last week, the LockBit gang announced<\/a> that it had breached the systems of the Federal Reserve of the United States and exfiltrated 33 TB of sensitive data, including \u201cAmericans\u2019 banking secrets.\u201d<\/p>\n\n\n\n

The Lockbit ransomware group added the Federal Reserve to the list of victims on its Tor data leak site and threatened to leak the stolen data on 25 June, 2024 20:27:10 UTC.<\/p>\n\n\n\n

The group hasn\u2019t published any sample of the stolen data.<\/p>\n\n\n\n

\u201cFederal banking is the term for the way the Federal Reserve of the United States distributes its money. The Reserve operates twelve banking districts around the country which oversee money distribution within their respective districts. The twelve cities which are home to the Reserve Banks are Boston, New York City, Philadelphia, Richmond, Atlanta, Dallas, Saint Louis, Cleveland, Chicago, Minneapolis, Kansas City, and San Francisco.\u201d reads the announcement published by the group on its leak site.<\/p>\n\n\n\n

\u201c33 terabytes of juicy banking information containing Americans\u2019 banking secrets.
You better hire another negotiator within 48 hours, and fire this clinical idiot who values Americans\u2019 bank secrecy at $50,000.\u201d<\/gwmw><\/gwmw><\/gwmw><\/p>\n\n\n\n

Despite the announcement, data leaked data from the group belongs to the Arkansas-based financial organization Evolve Bank & Trust.<\/p>\n\n\n\n

The analysis of the data leaked by the group on its Tor leak site on June 26 confirmed the documents belong to the Evolve Bank & Trust.<\/p>\n\n\n\n

Evolve Bank & Trust this week published a notice on its website to confirm the security breach and announced it has launched an investigation into the incident. The financial organization confirmed that certain personal information may have been compromised.<\/p>\n\n\n\n

“Evolve Bank & Trust is making retail bank customers and financial technology partners\u2019 customers (end users) aware of a cybersecurity incident that may involve certain personal information, as well as the actions we have taken in response, and additional steps individuals may take.<\/gwmw>” reads the notice<\/strong><\/a> of Cybersecurity Incident. “Evolve is currently investigating a cybersecurity incident involving a known cybercriminal organization that appears to have illegally obtained and released on the dark web the data and personal information of some Evolve retail bank customers and financial technology partners\u2019 customers (end users). We take this matter extremely seriously and are working diligently to address the situation.” <\/em><\/p>\n\n\n\n

Evolve has reported the incident to law enforcement, it also added that the incident has been completely contained.<\/gwmw><\/p>\n\n\n\n

An update published on June 26, 2024 12:00pm confirmed that the company’s retail banking customers\u2019 debit cards, online, and digital banking credentials do not appear to be impacted. <\/p>\n\n\n\n

Evolve will directly contact impacted customers and financial technology partners. <\/p>\n\n\n\n

“It appears these bad actors have released illegally obtained data, including Personal Identification Information (PII), on the dark web. The data varies by individual but may include your name, Social Security Number, date of birth, account information and\/or other personal information.<\/gwmw>” continues the report.<\/em><\/gwmw><\/gwmw><\/gwmw><\/p>\n\n\n\n

Several media reported that the\u00a0Federal Reserve had penalized Evolve Bank & Trust<\/a>\u00a0over\u00a0multiple “deficiencies”\u00a0identified in how the bank conducted\u00a0risk management, anti-money laundering (AML), and compliance practices.<\/p>\n\n\n\n

Several media outlets reported [1<\/a>, 2<\/a>, 3<\/a>] that the Federal Reserve penalized Evolve Bank & Trust for various “deficiencies” in the bank\u2019s risk management, anti-money laundering (AML) and compliance practices.<\/p>\n\n\n\n

Some experts believe the ransomware gang made an error, but many researchers argue that the announcement is a desperate tentative to gain relevance.<\/p>\n\n\n\n

Pierluigi Paganini<\/strong><\/a><\/gwmw><\/p>\n\n\n\n

Follow me on Twitter: @securityaffairs<\/strong><\/a> and Facebook<\/strong><\/a> and Mastodon<\/strong><\/a><\/p>\n\n\n\n

(<\/strong>SecurityAffairs<\/strong><\/a>\u00a0\u2013<\/strong>\u00a0hacking, Lockbit)<\/strong><\/gwmw><\/p>\n\n\n\n

<\/gwmw><\/p>\n","protected":false},"excerpt":{"rendered":"

The LockBit ransomware group seems to have lied when they announced the hack of the US Federal Reserve. The real victim is the Evolve Bank. The LockBit ransomware group hasn’t hacked the Federal Reserve as it has recently claimed, the real victim is the Evolve Bank. Last week, the LockBit gang announced that it had […]<\/p>\n","protected":false},"author":1,"featured_media":164879,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[3323,3,5,7],"tags":[88,182,15182,931,4112,9508,9506,10918,12931,30,687,544,841,1533],"class_list":["post-164988","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-breaking-news","category-cyber-crime","category-hacking","category-malware","tag-cybercrime","tag-data-breach","tag-evolve-bank-trust","tag-federal-reserve","tag-hacking","tag-hacking-news","tag-information-security-news","tag-it-information-security","tag-lockbit","tag-malware-2","tag-pierluigi-paganini","tag-ransomware","tag-security-affairs","tag-security-news"],"yoast_head":"\n杭州江阴科强工业胶带有限公司