The Download
Russian-speaking ransomware gangs are responsible for 69% of global ransomware proceeds, amounting to over $500 million in 2023. These gangs, including LockBit, Black Basta, and ALPHV/BlackCat, exploit vulnerabilities in systems, encrypt data, and demand ransoms for decryption.
LockBit, BlackCat (also known as ALPHV), and Black Basta are among the leading Russian-speaking ransomware gangs that have significantly impacted the cybersecurity landscape. LockBit has been particularly prolific, leveraging advanced tactics and multiple ransomware variants like LockBit Red, Black, and Green. It has attacked a wide array of sectors, including financial services, healthcare, and manufacturing, with ransom demands exceeding $50 million in some cases. BlackCat is notable for its use of advanced techniques such as disabling security tools and employing multiple encryption routines. It has demanded ransoms ranging from $400,000 to $3 million, sometimes exceeding $5 million. Black Basta, an emerging group since 2022, targets various sectors and employs double extortion tactics with ransom demands as high as $2 million
What You Can Do
To protect against ransomware attacks, implementing a multi-layered cybersecurity strategy is crucial. While there are a number of steps you should take to prevent ransomware attacks you should practice these two steps regularly:
Regular Backups: Regularly back up your data and ensure that the backups are stored offline or in a secure, isolated environment. This allows you to restore your data without paying the ransom in case of an attack.
Update and Patch Systems: Keep all software, including operating systems and applications, up to date with the latest patches. Many ransomware attacks exploit known vulnerabilities in software, so timely updates can prevent these exploits.
ThreatMate monitors your attack surfaces for vulnerabilities that ransomware groups exploit to get onto your network and wreak havoc. Get ahead of the bad guys today!
To Learn More: