Skip to content

Ransomware still a major threat despite disruption to RaaS groups

October 17, 2024 – Published on BetaNews

Ransomware remains a formidable threat facing organizations, with 49 active groups impacting more than 1,000 publicly posted victims in the third quarter 2024, according to a new report.

The report from GuidePoint Security’s Research and Intelligence Team (GRIT) shows threat actors are increasingly leveraging legitimate services and platforms to deliver targeted phishing messages. While the abuse of trusted notification services is not a new approach to delivering malware, the research team has recently observed novel — and progressively sophisticated — delivery techniques.

“While RaaS groups have made efforts to fill the power vacuum left by AlphV and LockBit, there is still a notable gap in the ransomware ecosystem,” says Grayson North, senior security consultant at GRIT. “Groups are more loosely affiliated than before, which is correlating with a wider, more diverse spread of victims, slower attack tempos and a stabilizing growth volume of active ransomware groups.”

The sectors most impacted by ransomware in Q3 2024 are manufacturing, technology and healthcare, respectively. Manufacturing remains the most impacted industry by a substantial margin.

Read More HERE.