LockBit — every breach we're tracking
Running log of incidents attributed to or claimed by LockBit in public reporting, with what was exposed and what victims should do. Updated as new incidents are ingested.
Groups like LockBit steal data first and extort second — and the stolen records rarely stay private. Once a victim organization's data hits a leak site, the personal details inside (names, emails, phones, addresses) get scraped into the same broker-and-dump ecosystem every doxxer searches. If an organization you've used appears below, treat your data as circulating.
Tracked incidents
JEC Eye Hospitals and Clinics Hit by LockBit Ransomware
Indonesian eye care provider JEC Eye Hospitals and Clinics was breached by LockBit, with data listed on the group's leak site. The incident …
Bancroft Engineering Claimed by LockBit Ransomware
Bancroft Engineering, a U.S. engineering firm, was claimed by the LockBit ransomware group. The breach was reported on June 22 with no immed…
Major Cineplex Group Claimed by LockBit Ransomware
Major Cineplex Group Public Company Limited, a major Thai entertainment and cinema operator, was listed by LockBit. The claim was discovered…
PROBAT Hit by LockBit Ransomware
German engineering and manufacturing firm PROBAT was listed as a victim by the LockBit ransomware group. The incident was publicly reported …
Both halves of the chain, cleaned once.
A breach put your credentials in 15.4B+ leaked records. Hackers chain that data to your address on 800+ broker sites. GalaxyWarden closes both halves for $19 once — no subscription required.