LockBit, Qilin, and DragonForce Form Ransomware Alliance
Summary
Hide ▲
Show ▼
Three prominent ransomware groups—LockBit, Qilin, and DragonForce—have formed a strategic alliance to enhance their operational capabilities and conduct more effective ransomware attacks. This collaboration aims to share techniques, resources, and infrastructure, potentially increasing the threat to critical infrastructure and expanding the attack surface to previously low-risk sectors. The alliance comes as LockBit returns to the scene following a significant law enforcement operation in early 2024, which disrupted its infrastructure and led to the arrest of some of its members. Qilin has been the most active ransomware group in recent months, targeting North America-based organizations disproportionately. The partnership is expected to bolster LockBit's reputation among affiliates and facilitate a surge in attacks.
Timeline
-
08.10.2025 15:04 1 articles · 3h ago
LockBit, Qilin, and DragonForce Form Ransomware Alliance
Three prominent ransomware groups—LockBit, Qilin, and DragonForce—have announced a strategic alliance to enhance their operational capabilities. This collaboration comes as LockBit returns to the scene following a significant law enforcement operation in early 2024. Qilin has been the most active ransomware group in recent months, targeting North America-based organizations disproportionately. The partnership is expected to bolster LockBit's reputation among affiliates and facilitate a surge in attacks on critical infrastructure.
Show sources
- LockBit, Qilin, and DragonForce Join Forces to Dominate the Ransomware Ecosystem — thehackernews.com — 08.10.2025 15:04
Information Snippets
-
LockBit, Qilin, and DragonForce have formed a strategic alliance to enhance their ransomware operations.
First reported: 08.10.2025 15:041 source, 1 articleShow sources
- LockBit, Qilin, and DragonForce Join Forces to Dominate the Ransomware Ecosystem — thehackernews.com — 08.10.2025 15:04
-
The alliance aims to share techniques, resources, and infrastructure among the groups.
First reported: 08.10.2025 15:041 source, 1 articleShow sources
- LockBit, Qilin, and DragonForce Join Forces to Dominate the Ransomware Ecosystem — thehackernews.com — 08.10.2025 15:04
-
Qilin has been the most active ransomware group in recent months, claiming over 200 victims in Q3 2025.
First reported: 08.10.2025 15:041 source, 1 articleShow sources
- LockBit, Qilin, and DragonForce Join Forces to Dominate the Ransomware Ecosystem — thehackernews.com — 08.10.2025 15:04
-
Qilin disproportionately targeted North America-based organizations in Q3 2025.
First reported: 08.10.2025 15:041 source, 1 articleShow sources
- LockBit, Qilin, and DragonForce Join Forces to Dominate the Ransomware Ecosystem — thehackernews.com — 08.10.2025 15:04
-
LockBit's return coincides with the release of LockBit 5.0, which targets Windows, Linux, and ESXi systems.
First reported: 08.10.2025 15:041 source, 1 articleShow sources
- LockBit, Qilin, and DragonForce Join Forces to Dominate the Ransomware Ecosystem — thehackernews.com — 08.10.2025 15:04
-
LockBit was disrupted in early 2024 by a law enforcement operation called Cronos.
First reported: 08.10.2025 15:041 source, 1 articleShow sources
- LockBit, Qilin, and DragonForce Join Forces to Dominate the Ransomware Ecosystem — thehackernews.com — 08.10.2025 15:04
-
The alliance may help restore LockBit's reputation and increase the threat to critical infrastructure.
First reported: 08.10.2025 15:041 source, 1 articleShow sources
- LockBit, Qilin, and DragonForce Join Forces to Dominate the Ransomware Ecosystem — thehackernews.com — 08.10.2025 15:04
-
The number of data leak sites tracked has increased significantly, with 81 sites identified in Q3 2025.
First reported: 08.10.2025 15:041 source, 1 articleShow sources
- LockBit, Qilin, and DragonForce Join Forces to Dominate the Ransomware Ecosystem — thehackernews.com — 08.10.2025 15:04
-
The professional, scientific, and technical services sector has the largest number of victims.
First reported: 08.10.2025 15:041 source, 1 articleShow sources
- LockBit, Qilin, and DragonForce Join Forces to Dominate the Ransomware Ecosystem — thehackernews.com — 08.10.2025 15:04
-
There has been a spike in ransomware attacks targeting countries like Egypt, Thailand, and Colombia.
First reported: 08.10.2025 15:041 source, 1 articleShow sources
- LockBit, Qilin, and DragonForce Join Forces to Dominate the Ransomware Ecosystem — thehackernews.com — 08.10.2025 15:04
-
Qilin, Akira, INC Ransom, Play, and SafePay are responsible for approximately 47% of global R&DE attacks in Q2 and Q3 2025.
First reported: 08.10.2025 15:041 source, 1 articleShow sources
- LockBit, Qilin, and DragonForce Join Forces to Dominate the Ransomware Ecosystem — thehackernews.com — 08.10.2025 15:04