In July LockBit responded to an interview request by Red Hot Cyber in which it trotted out it's version of the careworn old nonsense that criminal hackers help security, saying "we are ordinary pentesters and make this world safer". We wrote ".while some ransomware gangs seem to want to tell the world what they think, and how great they are, LockBit seems to care more about what its users think." Part of the gang's success seems to have come from simply avoiding the attention-seeking pitfalls of other gangs. We wrote extensively about LockBit, and the appearance of LockBit 3.0, in last month's ransomware review. Known ransomware attacks by industry sector, July 2022 LockBit Services remained the sector most afflicted, suffering almost a quarter of all attacks. The international picture followed a familiar pattern, with the USA suffering the largest number of attacks by far, distantly followed by a collection of the largest European economies. Two other gangs linked to Conti, Hive and KaraKurt, were also very active during July, ensuring that the gang behind “the costliest strain of ransomware ever documented” by the FBI continues to cast a long shadow, despite the retirement of the Conti "brand". BlackBasta has been strongly linked to the gang behind Conti and may be the closest thing it has to a successor. Notably, BlackBasta, a relatively new ransomware variant that first appeared in April, took the place occupied by Conti for much of the year as the second most active variant. In July, LockBit maintained the place it has occupied all year as the most active ransomware variant. This information represents victims who were successfully attacked but opted not to pay a ransom. Malwarebytes Threat Intelligence builds a monthly picture of ransomware activity by monitoring the information published by ransomware gangs on their Dark Web leak sites.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |