LockBit named just 24 organizations on its data-leak site in Q2 2025. This figure represents only 11% of its Q2 2024 victim count.

LockBit was responsible for a significantly lessened proportion of R&DE activity in 2024, due to early-2024 law enforcement (LE) disruption operations3. In 2023, LockBit accounted for over 820 separate incidents and approximately 20% of global R&DE activity4. In Q4 2024, LockBit accounted for just 1% of global R&DE5. LockBit added 175 victims to its leak site in May 2024.