A new feature has been added to the Sodinokibi  ransomware that allows it to encrypt even more of a victim’s files including those that are opened and locked by another process.

Databases, mail servers and some other applications will lock files that they have open to prevent other programs from modifying them. By locking these files, the programs prevent the data they contain from being corrupted as a result of two processes writing to a file at the same time.

Source Article