Privacy Ninja



        • Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

BlackMatter Ransomware Moves Victims to LockBit After Shutdown

BlackMatter Ransomware Moves Victims to LockBit After Shutdown

With the BlackMatter ransomware operation shutting down, existing affiliates are moving their victims to the competing LockBit ransomware site for continued extortion.

This morning, news broke that the BlackMatter ransomware gang is shutting down after members have gone missing and increased pressure by law enforcement.

As part of this shutdown, the ransomware operators are allowing affiliates to receive decryptors for existing negotiations so that they can continue extorting victims.

Also Read: Facts About Accountability PDF That You Need to Know About

While BlackMatter’s infrastructure is still live, BleepingCompuer has learned that affiliates are moving existing victims to the LockBit ransomware negotiation site.

In existing BlackMatter negotiation chats, affiliates are providing victims links to LockBit’s Tor sites where new negotiation pages have been setup for them.

BlackMatter affiliate transfering victim to LockBit site
BlackMatter affiliate transfering victim to LockBit site
Source: BleepingComputer

At these LockBit negotiation pages, the BlackMatter affiliates continue to negotiate with victims to receive a ransom payment.

As for BlackMatter, they are continuing their shut down, with today’s activities being to delete their presence from Russian-speaking hacking forums.

Security researcher pancak3lullz has been following BlackMatter’s cleanup activities, showing that the gang withdrew 4 Bitcoins (~$250,000) today from the Exploit hacking forum and deactivated their account.

Also Read: 5 Brief Concepts Between Data Protection Directive vs GDPR

Deactivating accounts on hacking forums
Source: pancak3lullz

The gang has also been editing their existing posts on forums and asking moderators to delete them.

BlackMatter deleting posts on hacking forums
BlackMatter deleting posts on hacking forums
Source: pancak3lullz

With REvil and BlackMatter now shut down, LockBit has become one of the largest and most successful ransomware operations running today.

The LockBit representative known as ‘LockbitSupp’ has shown to be a savvy threat actor who constantly adjusts tactics to recruit new affiliates, especially as established operations shut down.

While BlackMatter will likely rebrand and return as a new ransomware operation, their partnership with LockBit may hurt them in the long run as they lose experienced affiliates.



Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection


We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.


Click one of our contacts below to chat on WhatsApp

× Chat with us