麻豆影视

Business

    • What is LockBit, the malicious software used against Indigo, SickKids?

    Share
    TORONTO -

    Indigo Books & Music Inc. revealed this week that a massive systems outage it's been dealing with for almost a month was triggered by ransomware.

    The retailer, which lost access to its website and payments capabilities, said the attack deployed LockBit, a malicious software increasingly cropping up in digital security breaches.

    What is LockBit?

    LockBit is both a cyberattack group and a malicious software used to carry out criminal attacks.

    LockBit, the group, operates as a ransomware-as-a-service business, where teams develop malware that is licensed to affiliate networks, which use it to carry out attacks, said Sumit Bhatia, the director of innovation and policy at the Rogers Cybersecure Catalyst at Toronto Metropolitan University.

    Security software company BlackBerry's website says LockBit malware infiltrates its targets' networks through unpatched vulnerabilities, insider access and zero-day exploits -- flaws in software discovered before the company which created it realizes the problem, giving them "zero days" to fix it.

    LockBit is then able to establish control of a victim's system, collect network information and steal or encrypt data, the site said.

    "LockBit attacks typically employ a double extortion tactic to encourage victims to pay, first, to regain access to their encrypted files and then to pay again to prevent their stolen data from being posted publicly," BlackBerry said.

    How prolific is LockBit?

    LockBit has made at least $100 million in ransom demands and extracted tens of millions of dollars in payments from victims, said a court document filed in the District of New Jersey in a 2022 case against a suspected LockBit member.

    LockBit emerged as early as January 2020 and members have since executed at least 1,000 LockBit attacks against victims in the U.S. and around the world, the document alleged.

    Who is behind LockBit?

    That's a tricky question, said Bhatia, because "these folks operate in such shadows."

    "But what we understand largely is that there's a deep connection to Russia and to former members of the Russian community, who may not necessarily be based out of Russia anymore, but could be operating from a series of different locations across Europe, and form a part of this large network that LockBit has launched," he added.

    That means LockBit members could be located anywhere in the world. In November, for example, the U.S. Department of Justice charged dual Russian and Canadian citizen Mikhail Vasiliev in connection with his alleged participation in a LockBit ransomware campaign.

    Was Indigo's cyberattack carried out by the LockBit gang or someone using LockBit software?

    Indigo has said its network was "accessed by (alleged) criminals who deployed ransomware software known as LockBit," but added it does not know specifically who is behind the attack.

    Where else has LockBit been involved?

    Toronto's Hospital for Sick Children experienced a ransomware attack in December that affected operations. LockBit claimed one of its partners carried out the attack, which the group eventually apologized for, saying attacks on hospitals violate its rules.

    LockBit's other victims include the U.K.'s Royal Mail, French technology group Thales and the Lisbon Port Authority in Portugal.

    What can companies do to avoid being a victim to a LockBit attack?

    LockBit relies primarily on phishing attacks, said Bhatia.

    Phishing generally starts with fraudulent emails or text messages meant to look like they've been sent by a trustworthy company. They often dupe people into entering confidential information such as passwords into a fraudulent website or downloading malware onto a computer with access to a company's network.

    "Ransomware, especially through phishing, does often come down to the human element," said Bhatia.

    That means the best way to stop it is to ensure that staff are cautious and understand how to review links and messages they get to avoid scams.

    "It's really understanding how to be on the lookout for something that is seen as suspicious," Bhatia said.

    Is it a good idea to pay attackers to access your system or decrypt data and files if you're attacked with ransomware?

    "From a law enforcement perspective, organizations are encouraged not to pay and that's ... because you're not really guaranteed, even after paying that you're not going to be affected adversely," Bhatia said.

    "You can't really rely on the commitments being made by these attackers."

    Authorities also discourage paying because it encourages criminals to continue their attacks and propagates a cycle, he said.

    However, he noted "small businesses don't always have the luxury of not paying or those that are working with critical sectors, where access to that data or access to those systems is critical and can have a severe adverse effect."

    Indigo has refused to pay its attackers, who the company said planned to post on the dark web the employee data it stole.

    "The privacy commissioners do not believe that paying a ransom protects those whose data has been stolen, as there is no way to guarantee the deletion/protection of the data once the ransom is paid," Indigo said on its website.

    "Additionally, we cannot be assured that any ransom payment would not end up in the hands of terrorists or others on sanctions lists."

    This report by The Canadian Press was first published March 3, 2023.

    CTVNews.ca Top Stories

    Why brain aging can vary dramatically between people

    Researchers are uncovering deeper insights into how the human brain ages and what factors may be tied to healthier cognitive aging, including exercising, avoiding tobacco, speaking a second language or even playing a musical instrument.

    The union representing some 1,200 dockworkers at the Port of Montreal has overwhelmingly rejected a deal with their employers association.

    Canada

    World

    Politics

    • Murray Sinclair鈥檚 family members say the late justice and senator has been laid to rest according to his wishes.

    • Prime Minister Justin Trudeau announced voters in Cloverdale鈥擫angley City will pick their next member of Parliament on Dec. 16.

    Health

    Sci-Tech

    Entertainment

    Business

    Lifestyle

    Sports

    Autos

    Local Spotlight

    For the second year in a row, the 鈥楪ift-a-Family鈥 campaign is hoping to make the holidays happier for children and families in need throughout Barrie.

    Some of the most prolific photographers behind CTV Skywatch Pics of the Day use the medium for fun, therapy, and connection.

    A young family from Codroy Valley, N.L., is happy to be on land and resting with their newborn daughter, Miley, after an overwhelming, yet exciting experience at sea.

    As Connor Nijsse prepared to remove some old drywall during his garage renovation, he feared the worst.

    A group of women in Chester, N.S., has been busy on the weekends making quilts 鈥 not for themselves, but for those in need.

    A Vancouver artist whose streetside singing led to a chance encounter with one of the world's biggest musicians is encouraging aspiring performers to try their hand at busking.

    Ten-thousand hand-knit poppies were taken from the Sanctuary Arts Centre and displayed on the fence surrounding the Dartmouth Cenotaph on Monday.

    A Vancouver man is saying goodbye to his nine-to-five and embarking on a road trip from the Canadian Arctic to Antarctica.

    • Weather watchers were treated to an exceptionally rare display on Friday evening as rare cloud formations filled Vancouver skies.

    • For some shoppers it was Nov. 1, but for others the first hints of Christmas - saccharine treats, festive-fragranced candles and gaudily wrapped gift sets - were being noticed in stores long before the final Halloween decor had been cleared.

    • Thousands of people are expected to gather in downtown Vancouver on Monday to observe the city鈥檚 100th Remembrance Day ceremony.

    • Toronto is expected to see an economic boost to the tune of nearly $300 million thanks to Taylor Swift鈥檚 upcoming Eras Tour, which will be making a stop in Canada鈥檚 largest city for a six-show run later this month.

    • One man was transported to hospital early Monday morning after a stabbing in the northwest end of the city, Toronto police say.

    • Calgarians will be observing Remembrance Day at a number of different ceremonies across the city, including at the Hangar Flight Museum.

    • A home in the northeast Calgary community of Saddle Ridge was damaged in a fire on Sunday.

    • A pair of 105-mm howitzers bark constantly as they turn plywood tank targets into kindling kilometres away on the windswept landscape of one of Canada's largest military bases.

    • CTVNewsOttawa.ca looks at Remembrance Day ceremonies in Ottawa.

    • After months of controversy surrounding a dog park in Ottawa's west end, a solution has been reached to divide the park in half.

    • The employers association at the Port of Montreal locked out nearly 1,200 longshore workers, bringing a halt to traffic at the port.

    • An elementary school in Greenfield Park on Montreal鈥檚 South Shore is closed after it was the target of an alleged arson attack.

    • Though most businesses are expected to be open on Remembrance Day, there are some establishments that will be closed to commemorate the holiday.

    • Monday is Remembrance Day, a time to honour armed forces members who have died in the line of duty.

    • Boasting 2,300 square metres of skating space at its new location, Edmonton's Rollers Roller Rink believes it is the largest in Canada.

    • A Cape Breton senior recalls her life in German-occupied France, and her mother鈥檚 death, during the Second World War.

    • It's been a trip to cherish for a group of Canadians visiting Belgium this week to honour the legacy of Indigenous soldiers.

    • A pillar in Canada鈥檚 history was honoured in Winnipeg Sunday afternoon, with thousands showing up to pay tribute to the life and legacy of the late Murray Sinclair.

    • Winnipeg police have identified two men involved in a stabbing incident earlier this week.

    • There will be two ceremonies taking place in Regina for Remembrance Day, hosted by the Royal Canadian Legion.

    • Regina author Valerie Crowther is celebrating the release of her book 鈥榃ar Letters: Linking Lives in the Second World War.鈥

    • It was a somber day at Mosaic Stadium as members of the Saskatchewan Roughriders officially cleaned out their stalls and closed the book on the 2024 season.

    • A man has been charged after a stabbing at an apartment building in Kitchener.

    • The Guelph Police Service is putting out a warning after two deaths in the downtown area.

    • Two new tributes to Canada鈥檚 veterans have been unveiled at the Elmira Cenotaph.

    • Saskatchewan RCMP are searching for a suspect after a man was seriously injured in a farm-related incident in Montreal Lake.

    • It was a somber day at Mosaic Stadium as members of the Saskatchewan Roughriders officially cleaned out their stalls and closed the book on the 2024 season.

    • The Regina Rams claimed the Hardy Cup after a hard fought battle against the Saskatoon Huskies 19-14 on Saturday in the first all Saskatchewan U-Sports western conference final since 2002.

    • Emergency crews responded to the scene on Road 68/Highway 2 east of Thamesford around 7 p.m.

    • On Friday, the Sarnia Police Service (SPS) received a report of an alleged abduction in the area of Kathleen Avenue and Walnut Avenue.

    • 11 AM:WATCH LIVE

      11 AM:WATCH LIVE

      The events will start at 10:15 a.m. with a parade that forms up in front of the Delta London Armories, marches east on Dundas Street and turns north onto Waterloo Street to Dufferin Avenue, the west to the Cenotaph.

    • A group of former NHL players faced off against York Regional Police officers in Newmarket Sunday afternoon to raise funds for Special Olympics programs across the province.

    • A driver is facing multiple charges after a multi-vehicle collision on Highway 400 early Sunday morning.

    • The agreed statement of facts was read to the court on Friday in the case of Alex Williams, the 24-year-old jail guard charged last fall with smuggling cannabis and tobacco into Central North Correctional Centre in Penetanguishene.

    • 11 AM:WATCH LIVE

      11 AM:WATCH LIVE

      Representatives of the Windsor Veterans Memorial Services Committee, military representatives, wreath bearers, government officials, and members of the public will attend the Cenotaph at City Hall Square for the outdoor service.

    • One person has been arrested after Chatham-Kent Police Service (CKPS) received multiple complaints about an alleged drunk driver.

    • More details have been released about a police investigation at the Ambassador Bridge that connects Windsor, Ont. and Detroit, MI.

    • Environment Canada says heavy rain and winds could cause power outages on Vancouver Island as an "intense" storm system is set to hit the B.C. coast Sunday.

    • Six deer were struck by vehicles in six different locations in a six-hour period on B.C. highways on Saturday, according to the transportation ministry.

    • The union for locked-out port workers in British Columbia says the BC Maritime Employers Association cut off talks in less than an hour Saturday, refusing to budge on a final offer that the union has so far rejected.

    • The emergency department at South Okanagan General Hospital in Oliver, B.C., will be closed for 31 hours this weekend, the second such closure in a week and the third since the start of November.

    • Police in Kamloops, B.C., are reminding parents and guardians to check their children's Halloween candy after receiving a report of a mother finding a razor blade in one of her daughter's treats.

    • More than two years after Alannah Brown and Douglas Barker were found dead north of Penticton, police are asking for help identifying a vehicle they believe was associated with the crime.

    • The Southern Alberta Recreation Association is officially announcing the Town of Taber as next year鈥檚 host for the Southern Alberta Summer Games.

    • The Lethbridge Hurricanes broke open a close game with three goals in the first two minutes of the third period as they defeated the Warriors 7-3 in a game played Friday night in Moose Jaw.

    • There might not a lot snow just yet, but many southern Albertans are still itching to get outdoors.

    • Police have arrested a 15-year-old in connection with a break-in and $50,000 in damage done to the Centennial Arena in Elliot Lake in September.

    • Mayors of the five largest cities in northern Ontario met in North Bay the last two days to discuss a range of critical issues impacting their cities and the region.

    • Residents in the Sault expressed concerns ranging from vandalism to privacy invasions during recent consultations on the city's plan to install automated speed enforcement cameras.

    N.L.

    Shopping Trends

    The Shopping Trends team is independent of the journalists at 麻豆影视. We may earn a commission when you use our links to shop.聽Read about us.

    Stay Connected
    Follow 麻豆影视