BlackLock Ransomware Exposed After Researchers Exploit Leak Site Vulnerability

Threat hunters infiltrated the BlackLock ransomware group’s online infrastructure, exploiting a vulnerability in their data leak site. This allowed them to extract configuration files, credentials, and command history, revealing BlackLock’s modus operandi and potential connections to other ransomware strains like DragonForce. The findings suggest a possible takeover of BlackLock by DragonForce due to ransomware market consolidation.