lockbit3.0 Ransomware Negotiation — Datair

Hi,yes

Your servers have been blocked. We also downloaded 178 GB of critical information in advance, which we will process and distribute to your customers and competitors if you don't comply with our conditions. The amount of your payout is $150...000 in BTC.

Sure, wait pls

Stay in chat, we will send you the file tree soon...

Apart from the files we downloaded, the rest of your files are encrypted if you haven't figured it out yet.Wait for us.

$150,000, Yes.

You can also use the test unlocker of any one file to make sure that you can get your data back.

Okay, wait, you will get file tree.

Yes, Wait a little more.

[REDACTED URL]

This is not all the data that we have on hand.Among them there is a lot of confidential data.

We've already exposed some of your data, what else do you need?

No. we didn't do that.

[REDACTED URL]

open the link, there's a list of your files, it's not a complete list

after payment, all your data will be deleted from our server

ok

Wait a little while. Selecting a file

File: [Screenshot_2.png]

We did not have much time to study your documents in depth. We are sending you a screenshot of the scanned documents, which also contain confidential information.

And this is just one of the many folders

You can also use the test decryptor to decrypt one of the files. This way you can make sure that you get a fully working server after the payment.

You are also warned that you have 7 days to settle this issue. We will post your files on December 31st. --On shady forums where they can be used by hackers, carders, bank specialists, technology spies, and other specialists. -Send them to all your contacts, customers and partners. After that, in our experience, the business comes to an end and multimillion dollar lawsuits from affected employees, customers and competitors begin. --Competitors. They will be able to find a lot of the information they need from your files. -Controlling government agencies. We doubt you have perfect accounting and record keeping. We look forward to a timely and correct decision on your part.

BTC Wallet 14mwyF23z3NMaWumKcP6P2yEeiZsjFpS7J

4 days left.

1 day left

Hello.

We believe that your business is insured against such situations, and we also don't believe that you can make a BTC wallet for 1.5 weeks and transfer money to it. Further delay will only increase the cost. As for how we got into the system, of course we can tell you, but for a separate fee of $10,000.

We don't see any problems in replenishing the BTC wallet.If you delay the solution of this issue, the price will increase.

We advise to use non-custodial crypto wallets

We understand that it was a great holiday in the USA. however, we have been doing this business for a long time and cannot give you much time to solve this problem. Another 2 days, and the price will increase by 50k.

Hi.

Yes, we call your office.

We called to show you our capabilities. The price of 200k will be in 2 days and will only grow with 50k every extra week .

Now the price is $200.000.

Hello. We told you that on January 15 our decryptor will stop working and your servers will remain encrypted forever. We didn't promise you anything about a price increase. Your employees made a mistake - the price is not 350.000 but 250.000 and will increase every two days. The next increase of 50,000 will be January 9. This is payment for your slowness. And on January 15 we will begin to publish your confidential information on the shadow forums, as well as send it to your clients, competitors and regulatory agencies in the United States. For now, the solution to the problem is entirely in your hands.

[REDACTED URL]

Your negotiator obviously already got the operating money to solve this situation, but since now there is a slight upward trend in BTC - apparently he wants to make a little more money on this growth. No need to play with us. You have a deadline of January 15. Then we publish and send your data everywhere we can (and we can do a lot). Change the recovery, or pay the final price of $250,000 by January 15.

We are starting to publish and distribute data.

Hello, wait

You have a lot of confidential data and correspondence. What are your suggestions and options?

Also recall that the spreading of correspondence is punishable by huge fines, as well as administrative penalties up to the liquidation of the company. [REDACTED URL]

Hello. Since you are a new person, we will repeat it again for you. We have a huge number of critical files for you. Even a small number of your files will not only put an end to your business and the career of your employees, but will also lead to a large number of lawsuits for the distribution of confidential information of your customers and partners. A bonus for you will be sending all of your documentation (including accounting) - to the relevant regulatory agencies, which will be interested in the fact of the spread of your critical data, and someone may want to take the chance and improve their career. You understand that the law in any country is an extremely subjective thing, which can be turned either in your direction or against you. We have not published your data just because we have a lot of work to do right now, and we are very creative in spreading client information - we want as many people connected with you as possible to know that you have allowed a situation where their finances and safety are in danger due to your fault. We are attaching some screenshots of the most interesting, from our point of view, files. This is not everything, just a small part of what we have. Think about it.

File: [01.PNG]

File: [04.PNG]

File: [06.PNG]

File: [05.PNG]

File: [02.PNG]

File: [08.png]

File: [07.PNG]

You can use the instruction and decrypt any 2 files on your own

We will provide any information you are interested in after payment. I think you will be extremely surprised.

Are you in doubt about the availability of your files with us?

File: [September 2018 Statements.pdf]

File: [September 2018 Statements.pdf]

File: [001.PNG]

more?

We will send you two more files and that will be all. We are waiting for your decision

File: [0006contract-4.pdf]

File: [email list 11'22 PR.xls]

We hope for your discretion.

Do we understand correctly that your company isn't interested in solving this problem?

While you are stalling for some reason, we will publish and distribute some of the data. You'll like it. You're welcome.

Let's start with corporate correspondence. Since we have your confidential files, we have access to your correspondence. The first people to receive your shared correspondence are: 1.Anne Vandeveer ABV Retirement Plan Advisors, Inc. anne@abvadvisors.com (855) 550-0228 2.Van Shelton Actuaries & Associates (Amarillo) van@actuariesandassociates.com (806) 373-3624 3.Lorraine Dorsa Aegis Pension Services LDorsa@AegisPension.com (904) 686-1835

Hello. This is the Lockbit team. We see that you relaxed and thought that we had forgotten about you? Don't worry - we have enough time and energy for everyone. Your data is quite interesting because you did all the work for us. For example, the Active Clients folder in the Scanned Client Info folder is just ready to be delivered to your clients, don't you think? How will your life and financial well-being (not to mention your reputation and credibility) change when all the documents are in the public domain? Let's not hide it - we have partners who would love to buy all your data from us. But we want to help you first and save, first of all, the fate of you and your employees. It's not very pleasant to find yourself on the street with huge debts from lawsuits and to be blacklisted by employees who allowed leaks and damage to the businesses of partners who trusted you. You still have the option to settle with us, and we are committed to removing all of your files and pointing out cybersecurity issues. The choice is yours...

Hello. This is Lockbit. We have prepared files that we will send to the people who signed them describing the whole situation and your attitude to their security and trade secrets. We are sending you some of the screenshots for your review. Recipients: Pension Advisory Group, Ltd. -pag@pagltd.com -dennis@pagltd.com -melody@pagltd.com Frost, PLLC -drichardson@frostpllc.com -dcooper@frostpllc.com -erachal@frostpllc.com We will send out tomorrow, so you have 24 hours to go to tor chat and start solving the problem.

File: [1.png]

File: [4.png]

File: [3.png]

File: [2.png]

Hello. Tomorrow it's CJK Group's turn - there are also some documents for them, some of which we will send. Not ready to negotiate yet?

We have plenty of time and materials to send. That's why we don't have to rush. But you will lose more and more clients and partners every day.

Hello. Since you are not responding to messages, we will be sending out messages to your customers for another week, and then we will start publishing these documents on social networks.