According to Cointelegraph, the dark web affiliate panel of the LockBit ransomware group was hacked, leading to the leak of nearly 60,000 Bitcoin addresses. These addresses are related to LockBit's ransomware infrastructure, and the leaked data includes a MySQL database dump containing cryptocurrency-related information, which may help blockchain analysts track the group's illegal fund flows.

Although the addresses were exposed, no private keys were leaked. The leaked database contains 20 tables, including a "builds" table that records the ransomware versions created by the organization's members, and a "chats" table that logs over 4,400 negotiation messages with victims.

Analysis indicates that this incident may be related to a vulnerability in the Everest ransomware site, as both used similar information prompts.