Global IT products and services reseller CDW has been threatened to have its stolen data exposed by the LockBit ransomware operation on Oct. 11 after the company refused to meet the demanded ransom, according to The Register.
"As soon as the timer runs out you will be able to see all the information, the negotiations are over and are no longer in progress. We have refused the ridiculous amount offered," said LockBit spokesperson LockBitSupp.
No statements have been provided by CDW regarding the breach, which was first posted on LockBit's blog on Sept. 3, while the U.K. Information Commissioner's Office also said that there has not been any report from the IT reseller.
"LockBit has previously used pressure tactics to force other victims of their attacks in order to speed up ransom negotiations to ultimately pay up and with varying success. There is always a chance, however, that this is a tactic used to force their victims' hands to act quickly yet no real substance be in the original claim," said ESET Global Cybersecurity Advisor Jake Moore.
BleepingComputer reports that Knight ransomware was observed by KELA threat analysts to have the third iteration of its source code posted for sale by the operation's representative, Cyclops, on RAMP forums.