Published On : 2024-05-27
IN THIS INSTALMENT WE EXPLORE
RANSOMWARE ATTACK TRENDS
OPERATIONAL DWELL TIMES
TOP INITIAL ACCESS VECTORS
FILE DETECTIONS BY BUSINESS SEGMENT IN Q1 2024
MOST ACTIVE RANSOMWARE LANGUAGES
Ransomware Attacks Will Embrace Speed Over Stealth
Asset Type |
Targeted Technologies |
Interested RaaS groups |
Network Devices |
Cisco | Citrix | Fortinet | F5 |
Lockbit, Akira, Medusa |
File Transfer Software |
GoAnywhere MovelT |
clOp |
Pinters |
PaperCut |
Lockbit |
Remote Access and Services |
Screenconnect Microsoft (RDP) Microsoft (Netlogon) |
Lockbit, Akira, Blackbasta |
Email Gateways |
Microsoft (Exchange) |
Play, Bianlian |
ENCRYPTION ALGORITHMS OF PROMINENT GROUPS
- RSA-AES hybrid crypto system
- ChaCha20-Poly 1305
- AES-RSA
- ChaCha20 and RSA
- AES 256
- Salsa20