How ransomware has changed and the groups to watch out for in 2024

No Comments
Hacker

Web intelligence company Searchlight Cyber has released a new report on the ransomware landscape of the dark web, highlighting changing tactics and the groups that security teams need to look out for in 2024.

LockBit, BlackCat (also known as ALPHV or Noberus), and Cl0p were the most prolific ransomware groups of 2023 by the number of victims claimed on their dark web leak sites. However, a major finding of the report is that these groups' share of overall ransomware victims has actually decreased as the number of operators has grown.

LockBit's victims accounted for a third of the total posted on the dark web in the final three months of 2022 but its share only accounts for 17 percent in the last three months of 2023. The group's output hasn't decreased, in fact it doubled its total victim count from last year, but the ransomware world has got bigger.

New ransomware entities like 8Base, Akira, and Rhysida have emerged and quickly racked up a high victim count last year, making them groups to watch in 2024.

Jim Simpson, director of threat intelligence at Searchlight Cyber, says, "Our dark web intelligence shows that the ransomware landscape is becoming larger and more diverse. Small, specialized groups are emerging at pace while the large, established ransomware operations have also increased their output -- creating a more active landscape than this time 12 months ago. The expansion of the ransomware ecosystem means that organizations need the most up-to-date information on the specific ransomware threats facing their industry and their peers. Ransomware groups use the dark web to share their tactics, buy their initial access, and recruit affiliates -- security teams concerned about ransomware have to monitor this activity to understand and prepare for the latest threats."

The report also notes a shift in tactics as some ransomware actors have moved away from encryption-based attacks to direct data theft and extortion. Industries such as commercial services, capital goods, and healthcare face the highest risk of ransomware attacks, while the United States is the most attacked country.

You can get the full report from the Searchlight site.

Image credit: denisismagilov/depositphotos.com

No Comments

Comments are closed.

Got News? Contact Us

Recent Headlines

Beyond the snapshot: Why continuous risk assessment is essential in today's threat landscape

TUXEDO Stellaris 17 (Gen6): A high-performance portable Linux workstation

New solution helps companies prepare for 90-day TLS standard

Get 'Enterprise Transformation to AI and the Metaverse' (worth $59.99) for FREE

Best Windows apps this week

All you wanted to know about passkeys but were afraid to ask

Microsoft tells users 'if you want to fix 0x80070643 errors, you'll have to do it yourself'

Most Commented Stories

Say goodbye to Microsoft Windows 11 and hello to Nitrux Linux 3.4.1

78 Comments

The stunning Windows 13 -- yes, 13! -- is the Microsoft operating system we want

24 Comments

Microsoft 'improves' Windows 11 by bringing ads to the Start menu in the US

21 Comments

Windows 11 slammed for its 'comically bad' performance even on high-end hardware

18 Comments

Microsoft is up to its old tricks yet again -- Windows 10 users harassed with full-screen Windows 11 upgrade warnings

18 Comments

Microsoft releases preview version of Office 2024 for Windows and macOS -- download it now!

17 Comments

EndeavourOS ARM discontinued: A huge loss for the Linux community

9 Comments

Microsoft is actively blocking Windows 11 tweaking tools

8 Comments

© 1998-2024 BetaNews, Inc. All Rights Reserved. Privacy Policy - Cookie Policy.