We’re finally getting a look at how much ransomware attacks have been seen in the wild in the first half of 2018 – and the numbers are astounding.
Ransomware is alive and kicking.
SonicWall recently released a mid-year update to their 2018 Cyber Threat Report. In it, they cover increases in malware attacks, encrypted attacks, and cryptojacking attacks. But one of the most prominent attacks remains a constant threat – ransomware.
It feels like ransomware is old news - with so many stories in the news, and vendors claiming to have a handle on it, it’s natural to feel like it’s no longer a really-real threat. But the truth is ransomware is alive and well.
The SonicWall report brings to light the reality of just how serious you need to take the threat of ransomware:
- A 229% increase in ransomware attacks year-to-date over 2017
- 12 new variants of ransomware (including some we’ve covered here like GandCrab)
- 181.5 MILLION attacks this year alone (that’s nearly 100K attacks daily!)
The new criminal king of the hill GandCrab Ransomware is now rapidly adapting in real-time to security solutions offered by security vendors. GandCrab is a strain which targets mainly English-speaking countries. GandCrab is distributed via the RIG and GrandSoft exploit kits, as well as phishing attacks. The ransomware is operated in an affiliates program, with those joining the program paying 30%-40% of the ransom revenues to the GandCrab author. In return affiliates get a full-featured web panel and technical support.
These days, cybercriminals are savvy operators looking for ways to use their “products and services” in ways that help them generate the greatest amount of revenue. The numbers above demonstrate the business of ransomware is stepping on the proverbial gas, seeing a bright future for their upcoming revenue targets.
This news highlights the importance of ensuring your users are as vigilant as ever. Maintaining a constantly elevated culture of security is necessary to reduce the attack surface within your organization. This is accomplished through frequent and effective new-school security awareness training used to both educate the user on methods and techniques used by bad guys, but also about security-minded browsing and email habits.