Automate
Trades Maximize
Profits
Free Trial
NewsletterNewsletter
EN
Advertise submit a pr
Home / Crypto News / LockBit Ransomware Hack: What Caused the Data Breach?

LockBit Ransomware Hack: What Caused the Data Breach?

Nynu V Jamal
May 8, 2025
By Nynu V Jamal
Nynu V Jamal

Nynu V Jamal

Author
Expertise : Cryptocurrency, Exchanges, Lawsuits, Web3, AI, Blockchain
Nynu V Jamal is a Senior Journalist at CoinGape. She boasts more than 3 years of experience in content writing, with expertise in crypto and blockchain. She has contributed to platforms like CoinEdition and CryptoTale, demonstrating her proficiency in navigating the dynamic crypto landscape. Beyond her journalistic pursuits, Nynu is a literary enthusiast, having served as an Assistant Professor of English Language and Literature. She is a Master's degree holder in English Literature and a UGC NET qualifier. Her academic background has enabled her to publish research papers on literature, while also nurturing her creative side as a published poet. Her creative side extends to music, crafts, and art, which she actively explores. Her unique blend of analytical and creative skills allows her to craft engaging stories that captivate audiences. Stay updated with Nynu on LinkedIn
Read full bio
Why Trust CoinGape
CoinGape has covered the cryptocurrency industry since 2017, aiming to provide informative insights to our readers. Our journal analysts bring years of experience in market analysis and blockchain technology to ensure factual accuracy and balanced reporting. By following our Editorial Policy, our writers verify every source, fact-check each story, rely on reputable sources, and attribute quotes and media correctly. We also follow a rigorous Review Methodology when evaluating exchanges and tools. From emerging blockchain projects and coin launches to industry events and technical developments, we cover all facets of the digital asset space with unwavering commitment to timely, relevant information.
LockBit Ransomware Hack: What Caused the Data Breach?

Highlights

  • LockBit ransomware has been hacked, resulting in the public exposure of the team's illegal practices.
  • The leaked data includes 60,000 BTC addresses, negotiation chats, and admin credentials.
  • Security researcher Michael Gillespie posited that the data breach occurred due to lack of proper security measures.
AD Buy $COINDEPO and earn upto 27% APR

In a significant blow to the notorious LockBit ransomware gang, a massive hack exposed sensitive internal data, including details of 60,000 Bitcoin addresses. This data breach follows recent law enforcement efforts to disrupt the gang’s operations, potentially crippling their ability to carry out further crimes.

Notably, the exposed data includes negotiation chats, admin credentials, and wallet addresses. These critical documents are now publicly available, providing insights into LockBit’s operations.

LockBit Ransomware Gang Data Breach: Details

LockBit’s dark web affiliate panel was recently compromised, resulting in a complete defacement and exposure of sensitive data. The incident was first uncovered by the threat actor, Rey, who wrote on X, “LockBit just got pwned.” Following the breach, the admin panels show a message instead of the usual login screen:

Don’t do crime. CRIME IS BAD. xoxo from Prague”
Along with this message is a link to a downloadable archive: paneldb_dump.zip, which contains a MySQL dump of LockBit’s affiliate portal.

Inside the LockBit Ransomware Database

Notably, the breached database contains 20 tables that reveal the platform’s operations. It includes about 60,000 unique Bitcoin addresses, individual builds created by affiliates for attacks, and configurations used for each build, such as specific servers to skip or files to encrypt. In addition, the data unveils negotiation messages between the LockBit gang and victims, offering a glimpse into their tactics and interactions. Thus, the LockBit Ransomware hack helps an investigator to better understand LockBit’s inner workings.

The incident is unfolding at a time when the crypto market experienced a significant uptrend, mainly driven by Trump’s US-UK trade deal announcement.

What Caused the Hack?

Security researcher Michael Gillespie posited that the data breach occurred due to LockBit ransomware’s lack of proper security measures. The analyst identified that the passwords were kept in plain text, unencrypted, revealing lax security practices, which is ironic given their own malicious activities. This incident follows increasing crypto scams, which forced Australian regulators to shut down 90 companies allegedly linked to pig butchering scams.

Though the identity of the breach’s perpetrator and the method used are still unclear, the similar defacement message used in the Everest ransomware breach suggests a possible link.

Advertisement
coingape google news

Why Trust CoinGape

CoinGape has covered the cryptocurrency industry since 2017, aiming to provide informative insights Read more… to our readers. Our journal analysts bring years of experience in market analysis and blockchain technology to ensure factual accuracy and balanced reporting. By following our Editorial Policy, our writers verify every source, fact-check each story, rely on reputable sources, and attribute quotes and media correctly. We also follow a rigorous Review Methodology when evaluating exchanges and tools. From emerging blockchain projects and coin launches to industry events and technical developments, we cover all facets of the digital asset space with unwavering commitment to timely, relevant information.

  • Latest
  • /
  • Trending
BOJ Hikes Interest Rates to 30-Year High, Will Bitcoin Repeat 20-30% Post-Hike Crashes?
Breaking: U.S. Senate Delays CLARITY Act again, Crypto Market Structure Vote Slips to Early 2026
Breaking: Bitwise Files S-1 For SUI ETF With U.S. SEC
Crypto Hacks 2025: North Korean Hackers Steal over $2B in ETH and SOL This Year
Universal Exchange Bitget Removes Barriers to Traditional Markets, Offers Forex and Gold Trading to Crypto Users
Aster Stage 5 Airdrop Will Go Live Dec 22. What to Expect From Token Price?
Why is Crypto Market Down Today? (18 Dec)
$200M Worth of Token Unlocks Hit Market This Week- Buy The Dip Or Wait? Aster, ZRO, MERL
Top 3 Crypto Events to Watch at Year-End, Bullish Ahead?
Why is Cryptocurrency Market Down Today (DEC 11)?

Premium Partners

image
SpyDoge
Join Presale
image
Mexc
Sign Up
image
Deephash
Claim $100
image
PrimeXBT
Sign Up
image
Bitget
Sign Up
Newsletter
Your crypto brief.
Delivered every day.
  • Insights that move markets
  • 100,000 active subscribers
By signing-up you agree to our Terms and Conditions and Privacy Policy.

Related Articles

BOJ Hikes Interest Rates to 30-Year High, Will Bitcoin Repeat 20-30% Post-Hike Crashes?

BOJ Hikes Interest Rates to 30-Year High, Will Bitcoin Repeat 20-30% Post-Hike Crashes?
An image to represent the CPI data and the Bitcoin logo

Breaking: U.S. CPI Inflation Falls To 2.7% YoY, Bitcoin Price Climbs
An image of Bitcoin, Ethereum, and Solana logo

Bitcoin, Ethereum, and Solana to Hit New Highs in 2026, Predicts Crypto ETF Issuer Bitwise
Bitcoin Proxy Metaplanet Gets Support from World's Largest Sovereign Wealth Fund

Bitcoin Proxy Metaplanet Gets Support from World’s Largest Sovereign Wealth Fund
Bitcoin adoption reaches a new milestone as Bhutan commits $1B in BTC

Bitcoin Adoption Hits New Levels as Bhutan Commits $1B BTC to Develop Its Economic City
US SEC Announces Order on BlackRock Bitcoin Premium Income ETF

Breaking: US SEC Announces Order on BlackRock Bitcoin Premium Income ETF
RECOMMENDED
/
price analysis
crypto presales
Best Crypto Presales To Invest In December 2025 – Top Upcoming Presale Tokens
crypto ai trading bots
Best Crypto AI Trading Bots In 2025
top meme coin to buy in 2025
Top Meme Coins To Buy In December 2025
best cloud mining platforms
Best Cloud Mining Platforms For 2025
About Author
Nynu V Jamal
About Author
Nynu V Jamal
Nynu V Jamal is a Senior Journalist at CoinGape. She boasts more than 3 years of experience in content writing, with expertise in crypto and blockchain. She has contributed to platforms like CoinEdition and CryptoTale, demonstrating her proficiency in navigating the dynamic crypto landscape. Beyond her journalistic pursuits, Nynu is a literary enthusiast, having served as an Assistant Professor of English Language and Literature. She is a Master's degree holder in English Literature and a UGC NET qualifier. Her academic background has enabled her to publish research papers on literature, while also nurturing her creative side as a published poet. Her creative side extends to music, crafts, and art, which she actively explores. Her unique blend of analytical and creative skills allows her to craft engaging stories that captivate audiences. Stay updated with Nynu on LinkedIn
Investment disclaimer: The content reflects the author’s personal views and current market conditions. Please conduct your own research before investing in cryptocurrencies, as neither the author nor the publication is responsible for any financial losses.
Ad Disclosure: This site may feature sponsored content and affiliate links. All advertisements are clearly labeled, and ad partners have no influence over our editorial content.
CoinGape Portugese CoinGape Espanol CoinGape Deutschland
Subscribe to our Newsletter

5-minute daily crypto updates to your inbox

Follow us

Advertise with us

News

Popular

Featured

About

CoinGape is a burgeoning blockchain and crypto media company. It was recently awarded as the Best Crypto Media Company 2024 at Global Blockchain Show, Dubai. Our goal is to keep industry professionals up to date on the most recent news and developments. We are a team of experts who take great pride in offering unbiased and well researched information to help our readers make informed decisions. Read our Editorial Policy
global-blockchain blockchain-life
coingape 5M+ Monthly Page Views
coingape 50k+ Articles
©2025 CoinGape, All rights reserved
Smarter
Trading With
Bots
Free Trial
Cross