Tag Archive for: Ransomware

Ransomware payments globally surge by 500% in 2023

/in


The 2024 report also found that 63% of ransom demands were for $1 million or more The 2024 report also found that 63% of ransom demands were for $1 million or more

The latest report from cybersecurity firm Sophos revealed that ransom payments by companies globally hit with ransomware increased by 500% in 2023.

According to the “State of Ransomware 2024”, organizations that paid the ransom reported an average payment of $2 million, up from $400,000 recorded in 2022.

It, however, noted that ransoms are just one part of the cost. Excluding ransoms, Sophos’ survey found the average price of recovery reached $2.73 million, an increase of almost $1 million from the $1.82 million that the company reported last year.

Sophos in the report, added that despite the soaring ransoms, this year’s survey indicates a slight reduction in the rate of ransomware attacks with 59% of organizations being hit, compared with 66% in 2022.

The 2024 report also found that 63% of ransom demands were for $1 million or more, with 30% of demands for over $5 million, suggesting ransomware operators are seeking huge payoffs.

Ransomware as dominant threat

Commenting on the report, the Chief Technical Officer of Sophos, John Shier, said: “We must not let the slight dip in attack rates give us a sense of complacency. Ransomware attacks are still the most dominant threat today and are fueling the cybercrime economy.

“Without ransomware, we would not see the same variety and volume of precursor threats and services that feed into these attacks. The skyrocketing costs of ransomware attacks belie the fact that this is an equal-opportunity crime.

“The ransomware landscape offers something for every cybercriminal, regardless of skill. While some groups are focused on multi-million-dollar ransoms, there are others that settle for lower sums by making it up in volume.”

Causes of attacks

The report further revealed that for the second year running, exploited vulnerabilities were the most commonly identified root cause of an attack, impacting 32% of organizations. This was closely followed by compromised credentials (29%) and malicious email (23%).

Sophos noted that this is directly in line with recent, in-the-field incident response findings from its most recent Active Adversary report.

“Victims…

Source…

Lack of extradition treaty with Russia fueling ransomware groups: Morgan Wright – Fox News

/in



Lack of extradition treaty with Russia fueling ransomware groups: Morgan Wright  Fox News

Source…

LAPD website goes offline; officials give no cause but say it’s ‘not ransomware’

/in


The website for the Los Angeles Police Department was down for hours Friday, without explanation.

Capt. Kelly Muniz, the LAPD’s chief spokesperson, said public safety was “not affected” but could not provide a reason for why the site wasn’t functioning normally.

“I can tell you that it is not ransomware,” Muniz said.

A visit to the website produced a message saying, “Our services aren’t available right now. We’re working to restore all services as soon as possible. Please check back soon.”

Claims of credit for downing the website were made in various places online. A group called Dark Storm claimed on Telegram that its “cyber attack” was to blame. Muniz said there was “no indication” that was true.

The website has general information about bureaus, leadership, crime statistics and other documents and reports produced by the LAPD. The department has long been planning an upgrade to the site — with security one of its main concerns.

Sign up for Essential California for news, features and recommendations from the L.A. Times and beyond in your inbox six days a week.

This story originally appeared in Los Angeles Times.

Source…

REvil Affiliate Off to Jail for Ransomware Scheme

/in


Ukrainian national Yaroslav Vasinskyi, affiliate of the REvil ransomware-as-a-service group, was sentenced to more than 13 years in prison after pleading guilty to an 11-count indictment.

The charges against Vasinskyi, also known as Rabotnik, involved conspiracy to commit fraud, conspiracy to commit money laundering, and damage to protected computers. According to court documents, he conducted thousands of ransomware attacks using the Sodinokibi/REvil ransomware variants.

“Yaroslav Vasinskyi and his co-conspirators hacked into thousands of computers around the world and encrypted them with ransomware,” said Principal Deputy Assistant Attorney General Nicole M. Argentieri, head of the Justice Department’s Criminal Division. “Then they demanded over $700 million in ransom payments and threatened to publicly disclose victims’ data if they refused to pay.”

Alongside his sentencing, Vasinskyi has been ordered to pay roughly $16 million in restitution for the role he played in over 2,500 ransomware attacks — a fraction of the $700 million in ransom payments that was demanded of his victims.

Source…