Study: Majority of Attacks Occur between 1am to 5am

SeniorTechInfo
3 Min Read

Latest Research Reveals Alarming Trends in Ransomware Attacks

Recent research has uncovered a disturbing pattern in ransomware attacks, with threat actors taking advantage of off-duty security professionals to launch their malicious campaigns. The ThreatDown 2024 State of Ransomware report from Malwarebytes highlights how most attacks occur between 1 a.m. and 5 a.m., catching organizations off guard.

Using data from the ThreatDown Managed Detection and Response team, the report shows a 33% increase in global ransomware attacks over the past year, with countries like the U.K. and the U.S. experiencing significant spikes in malicious activity.

Graph showing number of ransomware attacks per country from July 2022 to June 2023 and July 2023 to June 2024.
Number of ransomware attacks per country from July 2022 to June 2023 and July 2023 to June 2024. Image: Malwarebytes

Chris Kissel, research vice president at IDC’s Security & Trust Products group, warns about the urgency of having round-the-clock protection against ransomware attacks, as threat actors move swiftly to compromise networks and deploy ransomware.

Furthermore, Marcin Kleczynski, founder and CEO of Malwarebytes, emphasizes the evolving tactics of ransomware gangs and the need for organizations to stay vigilant and well-equipped to combat such threats.

Smaller ransomware groups are becoming more prolific

The research also reveals a concerning trend where smaller ransomware groups, outside the top 15 most active groups, are increasingly carrying out attacks. This shift suggests a growing accessibility to ransomware tools for less experienced attackers.

Graph showing percentage of ransomware attacks by group from July 2022 to June 2023 and July 2023 to June 2024.
Percentage of ransomware attacks by group from July 2022 to June 2023 and July 2023 to June 2024. Image: Malwarebytes

In light of these findings, organizations are urged to enhance their cybersecurity measures and remain vigilant against the evolving landscape of ransomware threats.

Top targeted industries for ransomware in the U.S. and worldwide in 2024

Ransomware continues to pose a significant threat globally, with the number of attacks on enterprises increasing year over year. The services industry remains a prime target, while critical national infrastructure also faces heightened risk of disruption from ransomware attacks.

Graph showing percentage of ransomware attacks by industry from July 2022 to June 2023 and July 2023 to June 2024.
Percentage of ransomware attacks by industry from July 2022 to June 2023 and July 2023 to June 2024. Image: Malwarebytes

Furthermore, the report highlights the specific targeting of industries like healthcare and education in the U.S., reflecting the sector’s vulnerabilities and regulatory pressures.

As ransomware attacks continue to evolve and escalate, organizations must prioritize cybersecurity measures and preparedness to mitigate the risks.

Tactical shifts of ransomware attackers in 2024

The research also underscores the changing tactics of ransomware attackers, with an increasing reliance on living-off-the-land techniques to evade detection. This approach, coupled with faster attack timelines, underscores the need for proactive cybersecurity measures.

As ransomware threats evolve and intensify, organizations must remain vigilant, adapt their security strategies, and prioritize cybersecurity investments to protect against the growing menace of ransomware.

Share This Article
Leave a comment

Leave a Reply

Your email address will not be published. Required fields are marked *