Ransomware group Lockbit today posted chat logs that it says took place between itself and Crinetics Pharmaceuticals. The conversation apparently shows negotiations breaking down over LockBit’s $4 million ransom demand.
Crinetics in mid-March announced it was investigating a cybersecurity incident after it discovered “suspicious” activity on an employee account. LockBit claimed responsibility for the attack around the same time, saying it stole confidential data.
Crinetics has not confirmed LockBit’s claim.
LockBit posted screenshots of an alleged text conversation between itself and Crinetics Pharmaceuticals that took place on March 19, 2024. The screenshots imply that Crinetics attempted to negotiate the ransom down to $1.8 million, but LockBit refused.
In the chat, LockBit supposedly tells Crinetics it has 15 minutes to pay $4 million or else it will send files related to animal testing to the Humane Society of the United States, and evidence of the stolen data to the SEC.
Who is LockBit?
LockBit is one of the most prolific ransomware gangs in recent years, first appearing in 2019. It is believed the group is based in Russia.
LockBit often extorts victims twice. One demand is to decrypt systems, the other is to delete any stolen data.
According to our data, LockBit is responsible for 368 confirmed ransomware attacks across the globe. These attacks have affected at least 12.05 million records.
So far this year, LockBit has been confirmed as the culprit behind 23 confirmed attacks.