APT / THREAT GROUP
Locker
2
aliases
Intelligence Profile
Ransomware has GUI
Threat Analysis
Locker is a known-sophistication threat actor of undetermined national origin, engaged in cyber operations with a primary motivation of unknown activity patterns.
Intelligence Reports Mentioning Locker
Chrome Ad Blocker with 10M+ Installs Found with Dormant Script Injection Capability
The Hacker News· Jun 25, 2026
New GreatXML Exploit Bypasses Windows BitLocker via Recovery Partition XML Files
The Hacker News· Jun 11, 2026
‘GreatXML’ Zero-Day Exploit Bypasses BitLocker
SecurityWeek· Jun 11, 2026
Microsoft fixes BitLocker recovery bug on Windows Server 2025
BleepingComputer· Jun 11, 2026
Microsoft patches YellowKey, GreenPlasma, MiniPlasma zero-days
BleepingComputer· Jun 10, 2026
Microsoft Rolls Out Mitigations for ‘YellowKey’ BitLocker Bypass
SecurityWeek· May 20, 2026
Microsoft Releases Mitigation for YellowKey BitLocker Bypass CVE-2026-45585 Exploit
The Hacker News· May 20, 2026
Microsoft shares mitigation for YellowKey Windows zero-day
BleepingComputer· May 20, 2026
External References
Quick Facts
TypeAPT / Threat Group
Aliases2
Also Known As
LockerLockeR
Research Links
Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.