January 15, 2024 at 11:44AM
The ransomware industry witnessed a significant 55.5% surge in victims worldwide in 2023, totaling 4,368 cases. Groups like LockBit 3.0, AlphV, and Cl0p were notable contributors. Emerging groups like 3AM, Rhysida, and Akira also made an impact. Cyberint expects these new players to further establish themselves alongside veteran groups in 2024.
Based on the provided meeting notes, the following are the key takeaways:
1. The ransomware industry experienced a surge in 2023, with a 55.5% increase in victims worldwide, totaling 4,368 cases.
2. LockBit 3.0 maintained its position as the top ransomware group in 2023, with 1047 victims attributed to attacks such as the Boeing and Royal Mail incidents.
3. Other prominent ransomware groups in 2023 included Alphv and Cl0p, with 445 and 384 victims, respectively.
4. Several emerging ransomware groups, such as 8Base, Rhysida, 3AM, Malaslocker, BianLian, Play, and Akira, contributed to the increase in ransomware attacks in 2023.
5. The 3AM ransomware group gained notoriety due to a ransomware affiliate switching to 3AM after encountering obstacles with LockBit.
6. Rhysida ransomware group targeted various industries, including healthcare institutions, leading government agencies, and cybersecurity firms, demonstrating a broad reach across diverse sectors.
7. The Akira ransomware group, discovered in March 2023, has claimed 81 victims to date. It is suspected of having a strong connection to the notorious ransomware group, Conti.
8. Cyberint anticipates that newer ransomware groups could emerge as dominant players in the industry in 2024, alongside established groups like LockBit 3.0, Cl0p, and AlphV.
These takeaways reflect the significant rise in ransomware incidents, the activities of specific ransomware groups, and the potential landscape of the ransomware industry for the coming year.