Targeted social engineering is en vogue as ransom payment sizes increase
Several ransomware groups used highly targeted social engineering tactics to create a major impact across several industry sectors in Q2 2025.
Results for "ransomware"
Ransomware victims are getting better at haggling with hackers
Nearly half of companies paid a ransom to get their data back last year, according to new research, but they’re taking a hard line with hackers to strike fair deals. In its latest State of Ransomware
It’s been a bad week for ransomware operators
Hundreds of servers have been taken down as part of an international law enforcement operation against ransomware groups. Coordinated by Europol and Eurojust, the action saw key infrastructure dismant
The organizational structure of ransomware threat actor groups is evolving before our eyes
The Ransomware-as-a-service (RaaS) model has not recovered from law enforcement disruption, and the entrance of novice actors along with non-Russian state-linked cybercriminals has led to uncertain ou
Will Law Enforcement success against ransomware continue in 2025?
2024 was a banner year for Law enforcement agency actions against ransomware and cybercrime groups. Will the new administration ensure this momentum continues?
Misleading Metrics: Unraveling Ransom Payment Statistics in Australia
A recent Australian Financial Review (AFR) article contained statistics about ransomware payment trends that require some deeper inspection.
Law enforcement doxxing raises risk profile for threat actors
In Q3 2024 Law enforcement actions disrupted infrastructure and publicized the identity of several prolific ransomware threat actors
Ransomware actors pivot away from major brands in Q2 2024
Unaffiliated ‘lone wolf’ threat actors carry out a greater share of attacks as they attempt to obfuscate their identity in Q2 2024.
New Ransomware Reporting Requirements Kick in as Victims Increasingly Avoid Paying
A lower percentage of ransomware victims are paying, as new regulations begin to elicit more and more public disclosure of ransomware incidents.
Scattered Ransomware Attribution Blurs Focus on IR Fundamentals
In Q3 2023 a series of ransomware attacks by similar threat actors created headlines and blurred the lines of attribution.
Ransom Monetization Rates Fall to Record Low Despite Jump In Average Ransom Payments
As ransomware affiliates are paid less frequently, they have adapted their strategies to compensate for the shifting dynamics of cyber extortion.
The Seven Phases of a Ransomware Attack: A Step-by-Step Breakdown of the Attack Lifecycle
Understanding the anatomy of a ransomware attack empowers security teams to strengthen defenses, reduce the risk of successful attacks, and protect organizations from the serious consequences of a ran
Lessons From Clop: Combating Ransomware and Cyber Extortion Events
Recent attacks from Clop emphasize the importance of implementing an organization-wide ransomware and cyber extortion strategy, from preparedness to detection and isolation The post Lessons From Clop:
Big Game Hunting is back despite decreasing Ransom Payment Amounts
Ransomware threat actors are moving back up-market in search of lost profits as the cyber extortion economy seeks to halt its contraction.
Risk Intelligence Index: Cyber Threat Landscape by the Numbers
Flashpoint's monthly look at the cyber risk ecosystem affecting organizations around the world, including intelligence, news, data, and analysis about ransomware, vulnerabilities, insider threats, and
Improved Security and Backups Result in Record Low Number of Ransomware Payments
Only 37% of ransomware victims paid a ransom in Q4, a record low as security and backup continuity investments pay off.
Fewer Ransomware Victims Pay, as Median Ransom Falls in Q2 2022
Ransomware actors became more fluid in Q2 2022 as attribution becomes harder, and fewer victims succumb to paying cyber criminals.
HSGAC Hearing Recap: Ransomware Attacks and Ransom Payments Enabled by Cryptocurrency
During a recent HSGAC hearing, Coveware had the opportunity to provide testimony on how ransomware attacks are impacting US companies, and the importance mandatory reporting.