Ransomware victims have saved 6.5 million and decrypted more than 28,000 devices during the first year of the No More Ransom initiative, its creators have said.
The scheme, which was set up a year ago by Kaspersky Lab and McAfee in partnership with Europol and the Dutch National Police, offers users tools which allow them to unlock and decrypt computers that have been hit by ransomware. The tools are provided by nine partner organisations and protect against more than 100 different varieties of ransomware.
It is a good example of public and private sectors working together to tackle cyber security. Among No More Ransom's 109 partner organisations are security companies like Fortinet, Bitsight and Claranet, as well as law enforcement organisations from various countries, academic institutions such as Bournemouth University and major businesses such as Barclays.
Writing in a blog post about the figures, chief scientist and McAfee fellow Raj Samani, and lead scientist for McAfee's Office of the CTO, Christiaan Beeke, said: "Let us put that into context, for zero cost, victims of ransomware who do not have to be customers of any security provider can get their data back for nothing."
"They don't have to fill in a survey, enter their email address, provide their credit card details, in fact they don't even have to worry about obfuscating their IP address," they added. "For the first time, there is another option. No longer are victims faced with the option of a) lose my data or b) pay criminals."
However, ransomware gangs and cyber criminals are still making vast profits, despite these advances, new research shows.
Google, Chainalysis, NYU Tandon School of Engineering and UC San Diego this week presented a paper revealing that over the past two years, ransomware victims paid out over $25 million.
Two recent attacks include WannaCry, which delayed NHS operations amid other targets, and NotPetya, which is still impacting businesses a month after it hit.
"Preventive measures alone can't keep up with the fast-evolving nature of ransomware attacks. Instead, it's vital businesses look at layered security which includes dedicated protection from ransomware attacks to ensure they remain cyber resilient," said Dan Sloshberg, cyber resiliency expert at email management firm Mimecast.
-
Prolific ransomware operator added to Europe’s Most Wanted list as US dangles $10 million rewardNews The US Department of Justice is offering a reward of up to $10 million for information leading to the arrest of Volodymyr Viktorovych Tymoshchuk, an alleged ransomware criminal.
-
Jaguar Land Rover “did the right thing” shutting down systems to thwart cyber attackNews The attack on Jaguar Land Rover highlights the growing attractiveness of the automotive sector
-
Ransomware attack on IT supplier disrupts hundreds of Swedish municipalitiesNews The attack on IT systems supplier Miljödata has impacted public sector services across the country
-
A notorious hacker group is ramping up cloud-based ransomware attacksNews The Storm-0501 threat group is refining its tactics, according to Microsoft, shifting away from traditional endpoint-based attacks and toward cloud-based ransomware.
-
Security researchers have just identified what could be the first ‘AI-powered’ ransomware strain – and it uses OpenAI’s gpt-oss-20b modelNews Using OpenAI's gpt-oss:20b model, ‘PromptLock’ generates malicious Lua scripts via the Ollama API.
-
Data I/O shuts down systems in wake of ransomware attack
News Regulatory filings by Data I/O suggest the costs of dealing with the attack could be significant
-
Average ransom payment doubles in a single quarterNews Targeted social engineering and data exfiltration have become the biggest tactics as three major ransomware groups dominate
-
BlackSuit ransomware gang taken down in latest law enforcement sting – but members have already formed a new groupNews The notorious gang has seen its servers taken down and bitcoin seized, but may have morphed into a new group called Chaos
