LockBit Linked to Royal Mail Attack but Gang's Spokesperson Blames Other Threat Actors

European cops take down pig butchering call centers, SEC sues major law firm for details of Hafnium hack, Meta sues Voyager Labs for data scraping, Hackers target governments using Fortinet flaw, more

Metacurity will be off on Monday, January 16, in honor of Martin Luther King Jr.’s birthday. “Darkness cannot drive out darkness; only light can do that. Hate cannot drive out hate; only love can do that”…MLK November 17, 1957.

The Russia-linked LockBit ransomware group or someone using the gang’s encryptors is linked to the Royal Mail cyber attack that forced it to suspend international postal deliveries leaving more than half a million parcels and letters stuck in limbo.

Sources familiar with the Royal Mail investigation said LockBit’s ransomware, known as Lockbit Black, had infected machines used by the postal operator to print customs labels for parcels sent to overseas destinations. The ransom note says: “LockBit Black Ransomware. Your data are stolen and encrypted.”

An unredacted version of the printed ransom notes includes the Tor websites for the Loc…