Ransomware group LockBit 2.0 claims to have breached cybersecurity company Mandiant, CyberScoop reported June 6.
On June 6, LockBit 2.0 posted on its dark web portal that it would release Madiant's company files that it had allegedly breached.
A Madiant spokesperson told CyberScoop that the company was aware of the claims but saw no evidence indicating that it had been breached.
Madiant also alleged that the cybergroup actors were trying to disprove the company's June 2 research blog post that claimed LockBit 2.0 was an affiliate of Evil Corp, a cybercrime group that the U.S. government sanctioned in 2019.
The HHS has released warnings about LockBit 2.0 stating that it is a cyberthreat to the healthcare industry despite the group's claims it does not attack healthcare organizations.
Mandiant is known for publishing detailed reports about malicious cyber campaigns and identifying the likely nation-state sponsors of the intrusions. U.S. intelligence agencies have come to rely on the insights provided by Mandiant.
The company was acquired by Google for $5.4 billion on March 8.