August 22, 2024 at 08:34AM
Ransomware attacks on critical industrial organizations rose in July, with 34% of 395 attacks targeting this sector. Experts note increased confidence among perpetrators due to limited law enforcement intervention. Additionally, increasing connectivity between operational technology and IT has expanded the attack surface. Meanwhile, the use of infostealer malware continues to rise, facilitating ransomware attacks.
It seems that the meeting notes discuss the increasing targeting of critical industrial organizations by ransomware attacks. There has been a significant rise in ransomware attacks on these organizations, which provide essential services to society. The attackers are exploiting the need for these organizations to remain operational and are increasingly using infostealer malware to gain unauthorized access.
Furthermore, the notes mention a shift in the behavior of ransomware groups, with an increased willingness to target critical sectors, despite previous reservations and past law enforcement interventions. However, there is also some indication that law enforcement actions have had a positive impact in reducing the total number of victims, albeit incrementally.
The meeting notes highlight the role of initial access brokers (IABs) in facilitating ransomware attacks by providing affiliates and improving malware. Additionally, the usage of infostealer malware has been observed as a pivotal method for gathering information and valid credentials.
Overall, the notes emphasize the evolving tactics of ransomware groups, the targeting of critical industrial organizations, and the increasing use of infostealer malware to perpetrate attacks.