Resources and developments
Emerging Trends and Developments
- FBI: RansomHub ransomware breached 210 victims since February
- Top Ransomware Trends for 2024-2025 Security Teams Can't Ignore
- The International Counter Ransomware Initiative: From Forming and Norming to Performing
- Nearly 1/3 of ransomware victims had at least one infostealer infection in preceding months - researchers
- Two-Thirds of Healthcare Organizations Hit by Ransomware – A Four-Year High, Sophos ...
- Storm-0501: Ransomware attacks expanding to hybrid cloud environments
- Ransomware on the rise: Healthcare industry attack trends 2024 - Security Intelligence
- Ransomware gangs now abuse Microsoft Azure tool for data theft
- Ransomware Is ‘More Brutal’ Than Ever in 2024
- Nearly 1/3 of ransomware victims had at least one infostealer infection in preceding months - researchers
- Ransomware incidents hit 117 countries in 2023, task force says
- Ransomware Task Force finds 73% attack increase in 2023 - TechTarget
- The Drop in Ransomware Attacks in 2024 and What it Means
- Ciberataques y ransomware en América Latina: Amenazas y estrategias de protección
- Ransomware: Cybercrime Groups Increase Ransom Demands
- Latinoamérica y Caribe sufrieron 200.000 millones intentos de ciberataques en 2023
- Los países más atacados de LATAM según IBM
Recent Attacks
- US government agency confirms it was hit by major ransomware attack - TechRadar
- Qilin ransomware attack on Synnovis impacted over 900,000 patients
- Ransomware group releases screenshots in attempted extortion of Port of Seattle
- Inside the Dragon: DragonForce Ransomware Group
- How Ransomhub Ransomware Uses EDRKillShifter to Disable EDR and Antivirus Protections
- RansomHub claims Kawasaki cyberattack, threatens to leak stolen data
- NoName ransomware gang deploying RansomHub malware in recent attacks
- The Vanilla Tempest cybercrime gang used INC ransomware for the first time in attacks on the healthcare sector
- AutoCanada says ransomware attack "may" impact employee data
- U.S. govt agency CMS says data breach impacted 3.1 million people
- Monaco : le registrar Namebay victime d'un ransomware - WebtimeMedias
- New Mallox ransomware Linux variant based on leaked Kryptina code
- Microchip Technology confirms data was stolen in cyberattack
- Linux version of new Cicada ransomware targets VMware ESXi servers
- Iranian hackers work with ransomware gangs to extort breached orgs
- Law enforcement officers identified the hackers who hacked “Kyivstar”. The materials will be handed over to the International Criminal Court
- Criminal exploits of Scattered Spider earn respect of Russian ransomware hackers
- Medusa cybercrime gang takes credit for another attack on US municipality
- New Red Ransomware Group (Red CryptoApp) Exposes Victims on Wall of Shame
- Ransomware: le retour des pirates de Lockbit est compromise
- Familiar North Korean groups cited in cyberattacks against South Korean defense firms
- Sweden's liquor shelves to run empty this week due to ransomware attack
International and National Responses
- US sanctions crypto exchanges used by Russian ransomware gangs
- Germany seizes 47 crypto exchanges used by ransomware gangs
- Largest ever operation against botnets hits dropper malware ecosystem
- Europol-Led Operation Endgame Hits Botnet, Ransomware Networks
- Researcher sued for sharing data stolen by ransomware with media
- How Ukraine’s cyber police fights back against Russia’s hackers
- Internet Crime Complaint Center (IC3): Ransomware Victims Urged to Report Infections to Federal Law Enforcement
- The Record: LockBit ransomware gang disrupted by international law enforcement operation
- European Union Agency for Criminal Justice Cooperation : Eurojust supports international operation against world’s largest ransomware group
- U.S. Department of Justice Disrupts Hive Ransomware Variant
- EUROPOL: Law enforcement disrupt world’s biggest ransomware operation
- EUROPOL: International collaboration leads to dismantlement of ransomware group in Ukraine amidst ongoing war
- EUROPOL: Cybercriminals stung as HIVE infrastructure shut down
- U.S. Department of State: Reward for Information: ALPHV/Blackcat Ransomware as a Service
- U.S. D.O.J.: Justice Department Disrupts Prolific ALPHV/Blackcat Ransomware Variant
- UK: The UK’s National Cyber Security Centre (NCSC) and Information Commissioner’s Office (ICO) have released a joint letter urging the legal industry not to pay ransomware demands.
Useful resources
- Australian Signals Directorate - Australian Cyber Security Centre - Ransomware
- Unpatched Vulnerabilities: The Most Brutal Ransomware Attack Vector
- Top 6 Ransomware Attack Vectors (And how to Prevent them in the Enterprise)
- EUROPOL: IOCTA 2023
- Chainalysis: 2023 Crypto Crime Report
- FBI: 2023 Internet Crime Report
- RUSI Occasional Paper: The Scourge of Ransomware. Victim Insights on Harms to Individuals, Organisations and Society
- Cybersecurity and Infrastructure Security Agency CISA: Stop ransomware
- INTERPOL: 2022 INTERPOL GLOBAL CRIME TREND SUMMARY REPORT
- ENISA: Threat Landscape 2022
- Ransomware on cyber-physical systems: Taxonomies, case studies, security gaps, and open challenges
- ENISA: Cyber Resilience Act Requirements Standards Mapping - Joint Research Centre & ENISA Joint Analysis