Ransomware, a type of malicious software that blocks access to computer systems or encrypts files until a ransom is paid, has become increasingly prevalent in recent years. Cybercriminal gangs have embraced ransomware as a lucrative tactic, particularly with the rise of “ransomware as a service” where groups earn commissions for successful ransom demands. One such group, LockBit, has gained attention for its activities and has targeted high-profile victims. LockBit operates as both the name of the malware and the group behind it. The group encrypts stolen data and holds it for ransom, threatening to publish it if payment is not made. LockBit does not have any specific political affiliations and accepts affiliates from all over the world. While the group has rules in place, there is always a risk of rogue users targeting forbidden organizations. LockBit has been linked to nearly 2,000 victims in the United States alone and is being used by a diverse range of criminals in a scatter-gun approach. To protect against ransomware attacks, good cybersecurity practices such as system updates, strong passwords, network monitoring, and prompt response to unusual activity are crucial. Ultimately, making it more difficult for criminals to gain access will force them to seek easier targets.