InfoSecBulletin Cybersecurity for mankind
In 2023, over 6,500 ransomware attacks were reported, affecting a record 117 countries worldwide after a decline in 2022.
Ransomware incidents rose 73% year-over-year to 6,670, with significant increases in June and July linked to a widely used file transfer tool.
Eight New ICS Advisories released by CISA
Authority Denies
Hacker claim ransomware attack on Indonesia’s state bank BRI
London-based company “Builder.ai” reportedly exposed 1.2 TB data
(CVE-2024-12727, CVE-2024-12728, CVE-2024-12729)
Sophos resolved 3 critical vulnerabilities in Firewall
“Workshop on Cybersecurity Awareness and Needs Analysis” held at BBTA
CVE-2023-48788
Kaspersky reveals active exploitation of Fortinet Vulnerability
U.S. Weighs Ban on Chinese-Made Router TP-Link: WSJ reports
Daily Security Update Dated: 18.12.2024
CISA released best practices to secure Microsoft 365 Cloud environments
Data breach! Ireland fines Meta $264 million, Australia $50m
The Ransomware Task Force, established in 2021 by the nonprofit Institute for Security and Technology, is a public/private group of cybersecurity experts and government officials compiled the numbers.
In its 2023 annual report, the organization relied on data from eCrime.ch, which gathers messages from data leak sites.
The task force found that 117 countries were impacted by ransomware incidents from 66 different groups. In 2022, there were 105 countries and 58 gangs involved.
Global Ransomware Incidents: Year-Over-Year Change:
In 2023, ransomware activity increased in South Asia and South America, particularly in Iran, Pakistan, Brazil, and India. Brazil’s presidential office and India’s hospitals and financial systems were notably targeted.
LockBit and AlphV, two ransomware-as-a-service groups shut down by law enforcement this year, were the most active in various regions. They mainly targeted the construction, healthcare, and IT sectors.
Timeline of Incidents by Ransomware Group:
Some experts think that ransomware gangs may exaggerate claims about victims on leak sites. However, eCrime.ch’s statistics align with reports from the FBI and Chainalysis, which indicate that 2023 saw a record number of ransomware complaints and profits from these attacks.
The Ransomware Task Force expressed concern over the growing scale, frequency, and complexity of ransomware incidents as cybercriminals improve the RaaS model.
“The fundamental criminal effectiveness of the RaaS model has not changed, and these crimes continue to grow more profitable over time. Additional efforts must be taken in 2024 and beyond to disrupt this model,” the group said.
Global Ransomware Incidents by Country:
The report indicates that half of the 2021 ransomware task force recommendations are still unmet. Although progress has been made in incident reporting and global cooperation, efforts to stop ransom payments have been limited. Law enforcement urges victims not to pay ransoms if they can avoid it.
Global Ransomware Incidents by Month, 2023:
In April, the Ransomware Task Force stated that although some recommendations need new laws, many efforts to prepare organizations for attacks and support victims are still lacking.
“Governments have not taken all necessary further actions to combat ransomware,” the report said.
