Average Ransomware Ransoms Jump 130% While Use of Data Exfiltration Grows

Average Ransomware RansomsWith pressures by law enforcement on ransomware gangs in 2021, and more stringent security requirements by cyber insurers, cybercriminals are changing their tactics to ensure a payoff.

The overarching story arc for ransomware is evolution. From the use of multiple forms of extortion, to the constantly growing “as-a-service” model, ransomware has managed to thrive. According to new data in Coveware’s just-released Q4 2021 Quarterly Ransomware Report, ransomware is getting worse:

  • Ransoms are up 130% from Q3 2021, now averaging $322K
  • Median ransom numbers are also up 63%, at $117K
  • Data Exfiltration is now a part of 84% of all ransomware attacks

And these attacks don’t just stop with encrypting systems; according to coveware, there are many more threat actions (tied to MITRE ATT&CK TTPs) that take place, including:

  • Persistence, in 82% of attacks
  • Lateral Movement, also in 82% of attacks
  • Credential Access, in 71% of attacks
  • Command & Control, in 63% of attacks
  • Collection, in 61% of attacks

Email Phishing now ties with RDP Access as the number one initial attack vector for ransomware attacks, making it imperative that you have a defense in depth strategy to fend off malicious content within emails. This should include Security Awareness Training to employ the user as part of the defense, helping to spot threatening content before it has an ability to enable a ransomware attack.

Free Ransomware Simulator Tool

Threat actors are constantly coming out with new strains to evade detection. Is your network effective in blocking all of them when employees fall for social engineering attacks?

KnowBe4’s "RanSim" gives you a quick look at the effectiveness of your existing network protection. RanSim will simulate 24 ransomware infection scenarios and 1 cryptomining infection scenario and show you if a workstation is vulnerable.

RansIm-Monitor3Here's how it works:

  • 100% harmless simulation of real ransomware and cryptomining infections
  • Does not use any of your own files
  • Tests 25 types of infection scenarios
  • Just download the install and run it 
  • Results in a few minutes!

Get RanSim!

PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:


Topics: Ransomware

Subscribe to Our Blog

Comprehensive Anti-Phishing Guide

Get the latest about social engineering

Subscribe to CyberheistNews