InfoSecBulletin Cybersecurity for mankind
LockBit claimed that it breached Federal Reserve Board (Federalreserve.gov), the central banking system of the United States and exfiltrated 33 TB of sensitive data, including “Americans’ banking secrets.” “The group announced to release the stolen data on 25 June, 2024 20:27:10 UTC.”
According to the post by the LockBit ransomware group, “Federal banking is the term for the way the Federal Reserve of the United States distributes its money. The Reserve operates twelve banking districts around the country which oversee money distribution within their respective districts. The twelve cities which are home to the Reserve Banks are Boston, New York City, Philadelphia, Richmond, Atlanta, Dallas, Saint Louis, Cleveland, Chicago, Minneapolis, Kansas City, and San Francisco.”
CVSS 10.0 Flaw
Critical flaw in Siemens OZW Web Servers Enable Unauthenticated RCE
Microsoft Patch Tuesday May 2025: 72 flaws, 5 Actively Exploited Zero-Day
OTP glitch disrupted NID services across the country
Google to pay Texas $1.4 billion for location tracking practices
YouTube geo-blocks at least 4 Bangladeshi TV channels in India
Microsoft Patches Four Critical Azure and Power Apps Vulns
Qilin Ransomware topped April 2025 with 45+ data leak disclosures
SonicWall Patches 3 Flaws in SMA 100 Devices
Top Ransomware Actively Attacking Financial Sector: 406 Incidents Disclosed
Critical (CVSS 10) Flaw in Cisco IOS XE WLCs Allows RRA
The group post reads, “33 terabytes of juicy banking information containing Americans’ banking secrets. You better hire another negotiator within 48 hours, and fire this clinical idiot who values Americans’ bank secrecy at $50,000.”
LockBit is well-known for its major data breaches, such as those affecting companies like Boeing, ICBC Bank, Bangkok Airways, and others. The NCC Group recently reported that LockBit is the most active group behind ransomware attacks, even though its infrastructure was seized and its alleged leader, Dmitry Yuryevich Khoroshev, was exposed by law enforcement authorities.
In early June, the FBI informed that they obtained over 7,000 LockBit decryption keys and was inviting victims of LockBit ransomware to come forward to help them recover their encrypted data for free.
Hackmanac also post on x handle the same picture titled “USA: US Federal Reserve has been listed as a victim by the LockBit 3.0 ransomware group. The hackers allegedly exfiltrated 33 TB of banking information. Ransom deadline: 25th Jun 24.”
The Federal Reserve has not confirmed the breach or shared details about their response efforts, but federal agencies like CISA and the FBI are expected to be actively involved to address the situation.
The supposed cyberattack by LockBit 3.0 on the Federal Reserve shows that all sectors depending on digital infrastructure need to be more vigilant.
(Media Disclaimer: This report is based on research conducted internally and externally using different ways. The information provided is for reference only, and users are responsible for relying on it. Infosecbulletin is not liable for the accuracy or consequences of using this information by any means)
