Likely, there’s a combination of factors at play here. From March 2023 to July 2023, we recorded a total of 2,130. From March 2022 to July 2022, Malwarebytes recorded a total of 1,140 ransomware attacks. Malwarebytes' own data suggests that the increase in payouts could also be a simple consequence of there being more ransomware attacks in general. One possible reason for this increase, says Chainanalysis, could be that because fewer and fewer firms are willing to pay the ransom, ransomware gangs are increasing the size of their ransom demands, the idea being to squeeze the most money possible out of the firms still willing to pay. The driving force behind this huge number? Chainanalysis says it is “big game hunting.” the practice of targeting large, financially well-off corporations in order to secure the biggest possible payouts.Ĭhainanalysis also mentions an increase in payouts less than $1000, meaning smaller companies are still being targeted by ransomware gangs as well.Īt around this same time last year, total payouts were slightly under $300 million-a difference of over $150 million. Research published in July by Chainanalysis showed that ransomware gangs raked in around $449 million from victims in the last six months. When another LockBit suspected affiliate was arrested in November 2022, we also saw a similar historic low in activity from the group. At least LockBit’s July numbers, then, could be explained by them simply wanting to lay low for a bit. Still, it’s worth mentioning that a suspected LockBit affiliate was arrested last month. We’ve seen a similar pattern from LockBit before, and it’s not unusual for ransomware gang activity to ebb and flow. LockBit’s 107 attacks in April to 41 in July represents a 62 percent dip in activity. Since April 2023, we’ve observed an average decrease of 20 attacks a month from the group. The LockBit gang is experiencing a steady four-month decline in the number of attacks it has carried out. Known ransomware attacks by gang, July 2023 The gang published the data of an additional 170 victims in July-the second highest number of attacks by a single gang all year, just two shy of MalasLockers' record in May.Īmidst all the Cl0p chaos, however, a familiar foe seems to be quietly waning: LockBit. In June, Cl0p shot to the top of the charts due to their use of a zero-day exploit in MOVEit Transfer, and victims from those attacks continued to be posted in July. At the forefront of these attacks is, once again, Cl0p. July saw one of the highest number of ransomware attacks in 2023 at 441, second only to a record-breaking 556 attacks in May. This provides the best overall picture of ransomware activity, but the true number of attacks is far higher. In this report, "known attacks" are those where the victim did not pay a ransom. This article is based on research by Marcelo Rivero, Malwarebytes' ransomware specialist, who monitors information published by ransomware gangs on their Dark Web sites.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |