Earlier this week, Finnish cybersecurity firm KELA released a list of ransomware victims during the same period, along with its Q1 2022 sales report. Although attacks have recorded a decline, traditional hacker gangs attacking each otherdiscussing the same victims.
Significant amount of ransomware victims, according to company report showed a decrease of almost 40% Compared to the last quarter of 2021, 698 cases were recorded in the period between January and March this year. An average of 232 monthly ransomware attacks occurred during this period.
The traditional Conti, one of the most active hacking groups, seems to have lost its “leadership” among the most notorious gangs after leaking the malware code and internal chat logs after announcing its support for the Russian invasion of Ukraine. The group now ranks second behind LockBit in the cybercrime rankings, but still ahead of other actors like Hive, Alphv/Blackcat and Karakurt.
How are the world’s largest ransomware gangs behaving?
After Conti was leaked for political reasons, the data obtained not only helped cybersecurity companies better understand the workings of the main ransomware gang, but also served to improve the performance of LockBit, which reached 226 victims, indiscriminately attacking production and technology sectors. and public companies.
Affected, Conti fell to second place in “operations” and increased the activities of its so-called subsidiary KaraKurt. Alphv/Blackcat is seen by KELA teams as a new player in the industry.
However, it was the behavior of some gangs, such as Midas and Lorenz, who took a clearly unethical stance even when dealing with cybercriminals that most caught the analysts’ attention. These groups started posting on leak sites, data of victims hacked by other hackers as if they were “new companies”.
Source: Tec Mundo
