Ransomware tracker: The latest statistics (June 2024)

Ransomware groups claimed the highest number of attacks in May, but experts believe the claims might be exaggerated.

Last month, ransomware gangs posted 450 victims to their extortion sites, which is an increase compared to the 328 victims in April. The highest number of attacks ever recorded was 484, posted by groups in July 2023.

• Cyber Attack

LockBit Claims 33 TB of US Federal Reserve Data

By infosecbulletin / Monday , June 24 2024

LockBit claimed that it breached Federal Reserve Board (Federalreserve.gov), the central banking system of the United States and exfiltrated 33...

Read More

• Cyber Attack
• Data Breach

Indonesia’s National data center compromised, $8M ransom demand

By infosecbulletin / Monday , June 24 2024

Cyber attack compromised Indonesia's national data center, causing trouble with immigration checks at airports. Attacker demanded an $8 million ransom,...

Read More

• Vulnerabilities

ESET Issues Security Patch for Privilege Escalation Flaw

By infosecbulletin / Sunday , June 23 2024

ESET Issued security patch for privilege escalation flaw in its Windows security products. This flaw, called CVE-2024-2003 (CVSS 7.3), was...

Read More

• Hot Topic

Hacker offer zero-day RCE exploit of Atlassian Jira for Sale

By infosecbulletin / Saturday , June 22 2024

A threat offer to sell a zero-day exploit for Atlassian's Jira in a underground forum. This exploit can be used...

Read More

• International

US bans Kaspersky software over Russia ties

By infosecbulletin / Friday , June 21 2024

The US plans to ban the sale of Kaspersky antivirus software due to its alleged ties to the Kremlin. Gina...

Read More

• Hot Topic

China-linked spies target Asian Telcos since 2021

By infosecbulletin / Friday , June 21 2024

A group believed to be linked to China has hacked multiple telecom operators in an Asian country since 2021, according...

Read More

• National

Azad selected expert reviewer for CISA Review Manual 28th Edition

By infosecbulletin / Thursday , June 20 2024

Certified Information Systems Auditor (CISA) is a globally recognized professional certification for information systems audit, control, and security. It's offered...

Read More

• Cyber Attack

Attackers Target AWS Vaults, Buckets, and Secrets

By infosecbulletin / Thursday , June 20 2024

DataDog Security Labs found a worrying campaign targeting Amazon Web Services (AWS), showing a new wave of harmful activity aimed...

Read More

• International

CISA released Guidance for Modern Approaches to Network Access Security

By infosecbulletin / Wednesday , June 19 2024

CISA and the FBI released guidance, Modern Approaches to Network Access Security, with support from other organizations including New Zealand’s...

Read More

• Alert

CISA Releases One Industrial Control Systems Advisory

By infosecbulletin / Tuesday , June 18 2024

On June 18, 2024, CISA released an advisory about Industrial Control Systems (ICS). These advisories give important information about security...

Read More

Over a third of last month’s attacks were linked to LockBit, a group that had its website seized by law enforcement in February. Some leaders of the group claim that the takedown did not completely stop their activities, and LockBit is still operating.

LockBit has claimed to have attacked many organizations lately. However, cybersecurity experts doubt these claims and believe it’s a public relations strategy to reassure partners that their operations are running smoothly.

Allan Liska, a ransomware expert from Recorded Future, tracks and analyzes data from extortion sites, government agencies, news reports, and hacking forums. Many attacks listed on the site seem to be duplicates or old attacks that were never posted on the extortion site to begin with.

“The problem is that it is often difficult to determine what is real and what is made up as a way for LockBit to save face… Criminals are, to put it gently, unreliable narrators when it comes to victim reporting.”