Security Awareness Training Blog

    83% of all Successful Ransomware Attacks Featured Double and Triple Extortion

    Number of Daily Ransomware AttacksWith 2021 being the “testing ground” for ransomware extortion, 2022 is showing signs of ransomware gangs settling in on proven extortion tactics to ensure payment.

    Last year, we watched as ransomware gangs attempted every type of extortion tactic under the sun, including sending ransom attack notices to the printers within a victim organization. And like any “industry” that’s trying to find its’ feet, eventually they will figure out what works and what doesn’t, using the most effective combination of extortion tactics to get the result they want – taking their victims for as much money as possible.

    New survey data from security vendor Venafi paints a clear picture of how extortion is not just a mainstream tactic, but that using multiple forms in a single attack is now commonplace and even extend to a victim organization’s customers:

    • 83% of all successful ransomware attacks include double and triple extortion
    • 38% of ransomware attacks threatened to use stolen data to extort customers
    • 35% of ransomware attacks threatened to expose stolen data on the dark web
    • 32% of attacks threatened to directly inform the victim's customers of the data breach incident

    Additionally, the Venafi data also demonstrates that ransomware attacks definitely aren’t over once you pay the ransom:

    • 18% of victims who paid the ransom still had data exposed on the dark web
    • 8% of victims who refused to pay the ransom had attackers attempt to extort their customers
    • 35% of victims paid the ransom but were still unable to retrieve their data

    The takeaway here is that you can’t assume ransomware gangs are going to play fair – both during and after an attack. So, the best medicine is to proactively stop attacks before they start. Security Awareness Training plays an important role in stopping attacks that rely on social engineering tactics on the web and within email to trick their victims into engaging with malicious content. By educating them on the schemes, tricks, and campaigns cybercriminals use, users become vigilant and fall for these initial attacks, killing the chances of a successful ransomware attack entirely.

     

    Return To KnowBe4 Security Blog

    Get Your Ransomware Hostage Rescue Manual

    Ransomware Hostage Rescue Manual Cover 2022This 26-page manual is packed with actionable info that you need to prevent infections, and what to do when you are hit with ransomware. You also get a Ransomware Attack Response Checklist and Prevention Checklist. You will learn more about:

    1. What is Ransomware?
    2. Am I Infected?
    3. I’m Infected, Now What?
    4. Protecting Yourself in the Future
    5. Resources

    Don’t be taken hostage by ransomware. Download your rescue manual now! 

    Get Your Manual

    PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:

    https://info.knowbe4.com/ransomware-hostage-rescue-manual-0

    Topics: Ransomware

    Stu Sjouwerman

    ABOUT STU SJOUWERMAN

    Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

    Read more from Stu »

    Subscribe To Our Blog


    Security Awareness Training
    Blog RSS Feed
    Comprehensive Anti-Phishing Guide
    All Posts

    Posts by Tag

    See all

    Posts By Topic

    View All

    Get the latest about social engineering

    Subscribe to CyberheistNews