The UK has been the biggest target for ransomware attacks for the first half of 2019 with the number rising 195%, as compared to the 59% reduction in attacks of the same kind in 2018, it has been claimed.
SonicWall, which authored the report, said the number of recorded attacks sits at 6.4 million for the first half of the year and has been largely attributed to the growing preference of criminals for ransomware as a service (RaaS), as well as open-source malware kits becoming cheaper and more readily available online.
"Globally, cybercriminals continue to pivot toward new tactics and that's bad news because ransomware-as-a-service allows less programming-skilled actors into the malware game, and some targets are twice-victimised," said Bill Conner, SonicWall CEO.
Conversely, the US experienced a 21% reduction in ransomware attacks, despite major incidents hitting the headlines in recent weeks.
The Cerber family of RaaS has remained the most effective method of targeting businesses year-on-year, according to SonicWall. 39.5 million recorded cases have been detected already this year, almost 10 times the number of detections of Gandcrab, the second most prolific ransomware strain listed in the report.
While ransomware soared in the UK, overall malware detections dropped in 2019, following a record-breaking 2018 which saw 10.52 billion attacks across the globe. The US and the UK are still the most attacked nations, positioned first and second respectively, but both saw sizable drops in the number of attacks directed towards them.
This can be accounted for by the overall 20% global slowdown of malware attacks compared to last year. 4.78 billion attacks have been detected so far in 2019 while in the same period last year the figure came in at 5.99 billion.
In addition to RaaS, another growing threat this year is encrypted malware attacks, which have already seen a 27% jump from 2018.
So far in 2019, researchers detected 2.4 million encrypted malware attacks which is almost the same number detected for the entire year of 2018 (2.8 million) a 76% year-to-date increase.
In other areas, researchers indicated that office files with malicious code embedded within them still remain a consistent threat to businesses, but attacks tend to "ebb and flow" and average out in terms of year-on-year detection.
-
The unseen risk in Microsoft 365: disaster recoveryBusinesses that assume they’re covered for data backup could come unstuck in a time of crisis
-
Anthropic CEO Dario Amodei's prediction about AI in software development is nowhere nearly to becoming a realityNews In March, Anthropic CEO Dario Amodei claimed up to 90% of code would be written by AI within six months – his prediction hasn't quite come to fruition.
-
Prolific ransomware operator added to Europe’s Most Wanted list as US dangles $10 million rewardNews The US Department of Justice is offering a reward of up to $10 million for information leading to the arrest of Volodymyr Viktorovych Tymoshchuk, an alleged ransomware criminal.
-
Jaguar Land Rover “did the right thing” shutting down systems to thwart cyber attackNews The attack on Jaguar Land Rover highlights the growing attractiveness of the automotive sector
-
Ransomware attack on IT supplier disrupts hundreds of Swedish municipalitiesNews The attack on IT systems supplier Miljödata has impacted public sector services across the country
-
A notorious hacker group is ramping up cloud-based ransomware attacksNews The Storm-0501 threat group is refining its tactics, according to Microsoft, shifting away from traditional endpoint-based attacks and toward cloud-based ransomware.
-
Security researchers have just identified what could be the first ‘AI-powered’ ransomware strain – and it uses OpenAI’s gpt-oss-20b modelNews Using OpenAI's gpt-oss:20b model, ‘PromptLock’ generates malicious Lua scripts via the Ollama API.
-
Data I/O shuts down systems in wake of ransomware attack
News Regulatory filings by Data I/O suggest the costs of dealing with the attack could be significant
-
Average ransom payment doubles in a single quarterNews Targeted social engineering and data exfiltration have become the biggest tactics as three major ransomware groups dominate
-
BlackSuit ransomware gang taken down in latest law enforcement sting – but members have already formed a new groupNews The notorious gang has seen its servers taken down and bitcoin seized, but may have morphed into a new group called Chaos
