After a recent dip, ransomware attacks are on the rise again. According to data released by NCC Group, which actively monitors leak sites used by ransomware groups, Lockbit was the most prolific gang in July with 62 attacks. This is ten more than the previous month and more than twice as many as the second and third most active groups combined. The resurgence may be connected to structural changes within RaaS groups like Conti, which has split into Hiveleaks and BlackBasta.
Ransomware Attacks Are on the Rise
Summary: Lockbit, Hiveleaks, and BlackBasta are among the most prolific ransomware groups responsible for an increase in attacks.
Key facts
- Lockbit was the most prolific ransomware gang in July with 62 attacks.
- The number of successful ransomware campaigns increased by 47% from June to July.
- Hiveleaks and BlackBasta are associated with Conti, either as affiliates or replacements.
Why it matters
The rise in ransomware attacks poses significant business risks for organizations worldwide, impacting cybersecurity strategies and potentially leading to substantial financial losses.
Key metrics
- Number of Successful Ransomware Campaigns: {198} (In July, NCC Group recorded a significant increase in successful ransomware campaigns compared to June.)
- Increase from June to July: {47%} % (There was a 47% rise in the number of successful ransomware campaigns from June to July.)
@threatpost
Embedded content for: Ransomware Attacks Are on the Rise