While ransomware numbers may fluctuate by season and region, it cannot be overstated that ransomware is becoming more sophisticated and targeted. Ransomware attackers target all types of organisations, from healthcare and educational institutions to service providers and industrial enterprises.
At the beginning of 2023 LockBit, one of the world’s most prolific ransomware groups, remained in the first place among the top five most influential and prolific ransomware groups. REvil and Conti were replaced by Vice Society and BlackCat. The remaining ransomware groups that formed the top five at the beginning of 2023 were Clop and Royal.
“Ransomware groups around the world continue to improve their techniques. They are driven by three main factors. First, it is the chances of getting caught when attacking a certain organisation. The second factor is the size of ransom they can potentially receive. Finally, they always estimate the technical difficulty of the attack. If any one of these parameters goes out of line with the plans of the attackers, they reconsider,” comments Dmitry Galov, Head of Kaspersky Global Research and Analysis Team (GReAT), Russia. “Installing effective security solutions will likely draw ransomware groups away from an organisation. It is a necessary investment, as ransomware attacks can result in disastrous consequences such as permanent loss of information, disruption of business processes, loss of time, harm to reputation, and huge financial losses.”
Kaspersky Endpoint Security for Business, Kaspersky Small Office Security and Kaspersky Internet Security have demonstrated 100% effectiveness against ransomware attacks in Advanced Threat Protection Test assessments by AV-TEST. In 10 different full-chain attacks, the products did not lose a single user file.
To combat ransomware and assist those affected, the National High Tech Crime Unit of the Dutch National Police, Europol's European Cybercrime Centre, Kaspersky, and other partners jointly launched the No More Ransom initiative in 2016. On the official website, participants provide decryption tools, guidelines, and instructions to report cybercrimes, irrespective of the location of the incident. These invaluable resources have helped victims of 173 ransomware families retrieve their data without making any payments. Additionally, the initiative aims to raise awareness about ransomware and preventive measures to avoid infections. As a founding member of No More Ransom, Kaspersky has been a key contributor since the initiative's inception.
To protect yourself and your business from ransomware attacks, consider following the rules proposed by Kaspersky: