Ransomware attacks are evolving: Mimecast

Mimecast

By Dylan Bushell-Embling
Wednesday, 21 February, 2024
Ransomware attacks are evolving: Mimecast

Ransomware groups have evolved their attack strategies to effectively hold victims hostage, and SMEs are facing higher volumes of threats than large businesses, according to a new report from Mimecast.

The company’s Q4 Threat Intelligence Report found that ransomware campaigns continued to grow in Q4 2023.

Ransomware attack methods have evolved from crypto-ransomware campaigns involving encrypting data and extorting victims for the decryption keys to breach-for-ransom campaigns involving stealing sensitive data and threatening to release it when paid, to double and even triple extortion strategies involving combining tactics to intensify the consequences for victims.

Mimecast Senior Director for Sales Engineering in APAC Garret O’Hara said the company blocked nearly 250 million attacks against Mimecast-protected systems in January alone, a new record high for the company.

“It’s striking that in a busy election year, with 76 countries due to go to the polls, geopolitical tensions have increased, leading to more cyber attacks, with over 100 hacker groups claiming participation in the Israel–Gaza conflict alone,” he said. “It is deeply concerning that nation-states are using cyber operations to gather intelligence on rival governments and attack critical infrastructure and information systems.

"Organisations must act to ensure they and their employees are protected against this continuing uptick in malicious activity. Our new report offers threat-specific countermeasures and general recommendations to help combat threats.”

The report also found that users at SMEs encountered more than twice the number of threats compared to users at large companies, with users at small businesses facing 31 threats per user and mid-sized businesses facing 32, compared to 15 for large enterprises.

Attacks on SMEs tend to be more focused on credential threats due to the comparatively greater share of employees in critical roles and their reliance on credential-based cloud services for much of their operations.

Finally, the report found that Q4 marked the first time users were more likely to encounter malicious links than malicious attachments, as attackers adjust their strategy to reduce their reliance on messages blocked as either spam or impersonation.

Image credit: iStock.com/Just_Super

Related News

Veeam buys ransomware response company Coveware

Veeam has arranged to augment its cyber extortion incident response capabilities with the...

Commvault arranges to buy Appranix

Cyber resilience provider Commvault plans to leverage its acquisition of Appranix to help...

Fujitsu establishes security consulting division

Fujitsu's new digital security consulting division will help organisations prepare for and...

Content from other channels on our network

The potential of flexible thin-film electronics for chip design

Drive the future of transportation with SCHURTER

Australia's largest electronics expo returns to Sydney

Robotic lab enhances battery manufacturing

Machine learning used to create fabric-based touch sensor

Central Highlands Water chooses Infor for ERP

The benefits and risks of AI usage in the public sector

Cobalt Iron earns patent on analytics-based dynamic authorisation control

Shoalhaven City Council uses AI to deliver safer roads to the community

Smart technologies: helping councils improve community services and sustainability

Extreme enclosure heli-lifted into an extreme environment

Cyber secured at critical network device level has never been more important

Cradlepoint 'Vehicle as a Node' is the Next Frontier for Emergency Services

Govt responds to post-incident review of Optus outage

UHF CB — you must be joking!

  • All content Copyright © 2024 Westwick-Farrow Pty Ltd