At The Identity Organisation, we're here to help!

    Or drop us a mail!

    Your privacy is important to us, and we want to communicate with you in a way which has your consent and which is in line with UK Law on data protection. As a result of a change in UK law on 25th May 2018, by providing us with your personal details you consent to us processing your data in line with current GDPR requirements.

    Here is where you can review our Privacy & GDPR Statement

    To remove consent at any time, please e-mail info@tidorg.com with the word "unsubscribe" as the subject.

    +44 (0) 1628 308038 info@tidorg.com

    Ransomware Payments Decline While Data Exfiltration Payments Are On The Rise

    The latest data from Coveware shows a slowing of attack efficacy, a decrease in ransom payments being made, and a shift in initial access tactics.

    According to Coveware’s Q2 2024 Ransomware Quarterly Report, we see a few interesting trends:

    • Threat actors are no longer being “brand loyal” to a particular ransomware brand, and appear to be running their operations in a more unaffiliated manner. This means organizations need to focus on common threat actions rather than specific attack patterns of a given group.
    • The percentage of organizations paying the ransomware payment has dwindled from 85% of victim organizations in Q1 of 2019 to just 36% last quarter
    • Average ransomware payments continue to increase, likely in response to less organizations paying the ransom

    A new data point brought to light this quarter is the data exfiltration only (DXF) payment trend, which is relatively flat despite fluctuating between 53% in Q1 of 2022 when tracking began, down to a low of 23% in Q1 of this year.

    The decline of ransom payments based on encrypting data and the rise of DXF payments is an indicator of what to expect with ransomware attacks. The only way to stop these attacks is through great detection and mitigation – something achieved with users who enroll in continual security awareness training to stop phishing-based attacks.

    I doubt we’ll see the use of XSS end anytime soon, but do expect to see improved uses of it in ways that users will fall for, making it imperative that they be taught now instead of after a successful attack.

    KnowBe4 empowers your workforce to make smarter security decisions every day. Over 65,000 organizations worldwide trust the KnowBe4 platform to strengthen their security culture and reduce human risk.

    Free Ransomware Simulator Tool

    Threat actors are constantly coming out with new strains to evade detection. Is your network effective in blocking all of them when employees fall for social engineering attacks?

    KnowBe4’s “RanSim” gives you a quick look at the effectiveness of your existing network protection. RanSim will simulate 24 ransomware infection scenarios and 1 cryptomining infection scenario and show you if a workstation is vulnerable.

    Here’s how it works:

    • 100% harmless simulation of real ransomware and cryptomining infections
    • Does not use any of your own files
    • Tests 25 types of infection scenarios
    • Just download the install and run it 
    • Results in a few minutes!
    Get RanSim!

    PS: Don’t like to click on redirected buttons? Cut & Paste this link in your browser:https://info.knowbe4.com/ransomware-simulator-tool-partner?partnerid=001a000001lWEoJAAW

    Sign Up to the TIO Intel Alerts!

    Back To Top