LockBit ransomware group claims reposnibility for CDW breach

The notorious LockBit ransomware gang has targeted CDW Corporation, a leading provider of technology products and services for various sectors, including business, government, and education. This cyber threat emerged through a claim on the dark web channel by the LockBit gang, asserting a successful breach of CDW's data and issuing a deadline to escalate their threats against the company.

The severity of the CDW data breach claim is highlighted by the gang's declaration that "ALL AVAILABLE DATA WILL BE PUBLISHED," a tactic they've used previously to pressure their victims during cyber attacks. Specific details regarding the files and folders impacted in this alleged CDW data breach have not been disclosed. Moreover, the CDW website continues to operate without any visible signs of an attack.

CDW Corporation, listed on Nasdaq, is a major multi-brand provider of information technology solutions, serving diverse clientele across the United States, the United Kingdom, and Canada, including businesses, government agencies, educational institutions, and healthcare providers.

Although there is no prior record of a specific CDW data breach, the company has faced controversies, such as legal action initiated by Contour Data Solutions alleging the theft of intellectual property.

LockBit is now threatening that the data will be released on 11th of October 2023.

Operating as a ransomware-as-a-service (RaaS) group since September 2019, LockBit offers encryption services to affiliates under a profit-sharing model, using variants like .abcd, LockBit 1.0, LockBit 2.0, LockBit 3.0, and LockBit Green. The LockBit ransomware gang is no stranger to cyber threats, having targeted Fauquier County Public Schools, The Weather Network, New York State hospitals and many others.