Ransomware group claims to have hacked the federal reserve

DC Studio/Adobe Stock Thomas Barrat/Adobe Stock (Licensed)

Ransomware group threatens Federal Reserve—claims it hacked America’s ‘banking secrets’

The cybercrime group claims it grabbed ’33 terabytes’ of data from the Fed.


Mikael Thalen


The ransomware group known as LockBit claimed to have hacked the Federal Reserve Bank and says it will release 33 terabytes of sensitive data on Tuesday.

In a post to the dark web this week, the criminal organization alleged that it had been in talks with the bank in order to secure a ransom in exchange for keeping the data private.

“33 terabytes of juicy banking information containing Americans’ banking secrets,” the group wrote. “You better hire another negotiator within 48 hours, and fire this clinical idiot who values Americans’ bank secrecy at $50,000.”

LockBit rose to prominence in 2019 by bringing in millions of dollars in ransom payments. And although the group’s online infrastructure was shuttered by the FBI and other law enforcement agencies in February, LockBit has managed to reemerge and continue its operations.

Cybersecurity experts, however, are skeptical of claims regarding the Federal Reserve and note that LockBit has not released any sample data.

The Daily Dot reached out to the Federal Reserve to confirm whether LockBit’s claims were true but did not receive a reply.

In remarks on X, the malware sample hosting service vx_undeground expressed doubt that the cybercrime group had managed such a feat.

“If Lockbit ransomware group actually ransomed the United States Federal Reserve it would be DEFCON 2 and the administrators would need to worry about a drone strike,” the group jokingly wrote. “Unless Lockbit ransomware group ransomed something small in the Federal Reserve, like maybe Lockbit took down their coffee machine and they can’t watch anime or something (we don’t know what the staff at the Federal Reserve actually do).”

Cybersecurity analyst and security researcher Dominic Alvieri, who regularly reports on ransomware groups, similarly expressed skepticism in regards to LockBit’s allegations.

“No proof so prolly just blowing off steam,” Alvieri said.

Brett Callow, a threat analyst at the cybersecurity firm Emsisoft, told the Daily Dot that he believed LockBit was merely attempting to garner attention.

“LockBit’s claim is likely complete and utter bollo… erm, nonsense, and a tactic designed to get its ailing RaaS [Ransomware-as-a-Service) back into the limelight.”

Given that LockBit claims the data will be published on Tuesday, assuming the Federal Reserve doesn’t pay the alleged ransom, it won’t be long until everyone’s questions are answered.

Just last month, the U.K.’s National Crime Agency revealed the alleged identity of LockBit’s leader. The man, Russian national Dmitry Khoroshev, has since been sanctioned by the U.S., U.K., and Australia.

The U.S. government is offering $10 million for information leading to the arrest or conviction of Khoroshev.

The internet is chaotic—but we’ll break it down for you in one daily email. Sign up for the Daily Dot’s web_crawlr newsletter here to get the best (and worst) of the internet straight into your inbox.

The Daily Dot