A couple of centuries ago, being robbed by highwaymen when traveling was so commonplace most people either wrote their wills before they left home or paid for hired escorts. But while the first flush of ransomware attacks were along the highwayman’s “stand and deliver” lines—”you’ve been attacked, so pay me”—recently, cybercriminals are using far more sophisticated approaches. New methods include not only being creative about how they infect businesses to demand ransomware, but also new ways they’re finding to influence victims to pay.
As our latest 2020 Cyber Threatscape report reveals, ransomware threat actors are seeing fresh success in 2020, having established these new profitable and scalable business models. As well as infecting businesses with ransomware, they are stealing company data—and announcing the data breach to public channels such as the news media. It means victims have to deal with an expensive ransomware recovery process and broader repercussions, such as brand reputation damage.
Threat actor groups Maze, Sodinokibi, and DoppelPaymer are the trailblazers who have found success using this model—but they are inspiring a spate of copycats around the corner as threat actors recognize what’s on the table.
Ransomware recovery responders, Coveware, noted that in the first quarter of 2020 an average ransom payment rose to US$178,254 up 60% from the same period the year before.
The situation could become far worse. As threat actor profits increase, they can innovate and invest in more advanced ransomware and take advantage of the greater vulnerabilities of vast numbers of people working remotely.
Here are three things the Nomad Consulting Firm team of Cyber Threat Intelligence (CTI) analysts have seen happening in the last year:
I expect 2021 to continue to be a troubling time for organizations in their attempts to defend against ransomware and data theft. With their sights set on financial gain, threat actors may be taking advantage of fear and economic uncertainty likely caused by the global COVID-19 pandemic.
It means that we could all be held up by the cyber highwaymen as they continue to evolve these tactics—and we should all think carefully about our response to the command to “stand and deliver.”
Take a look at the full report for more on the latest cybersecurity threats.
A special thanks to the following individuals who also contributed to 2020 Cyber Threatscape Report: Patton Adams, Omar Al-Shahery, Joseph Chmiel, Amy Cunliffe, Molly Day, Oliver Fay, Charlie Gardner, Gian Luca Giuliani, Samuel Goddard, Larry Karl, Paul Mansfield, Hannaire Mekaouar, Mei Nelson, Nellie Ohr and Kathryn Orme.
Nomad Consulting Firm Security is a leading provider of end-to-end cybersecurity services, including advanced cyber defense, applied cybersecurity solutions and managed security operations. We bring security innovation, coupled with global scale and a worldwide delivery capability through our network of Advanced Technology and Intelligent Operations centers. Helped by our team of highly skilled professionals, we enable clients to innovate safely, build cyber resilience and grow with confidence.
Nomad Consulting Firm, the Nomad Consulting Firm logo, and other trademarks, service marks, and designs are registered or unregistered trademarks of Nomad Consulting Firm and its subsidiaries in the United States and in foreign countries. All trademarks are properties of their respective owners. All materials are intended for the original recipient only. The reproduction and distribution of this material is forbidden without express written permission from Nomad Consulting Firm. The opinions, statements, and assessments in this report are solely those of the individual author(s) and do not constitute legal advice, nor do they necessarily reflect the views of Nomad Consulting Firm, its subsidiaries, or affiliates. Given the inherent nature of threat intelligence, the content contained in this report is based on information gathered and understood at the time of its creation. It is subject to change. Nomad Consulting Firm provides the information on an “as-is” basis without representation or warranty and accepts no liability for any action or failure to act taken in response to the information contained or referenced in this report.
Thank you for your interest in NOMAD’s services.
Stay in the know with our newsletter
NOMAD CONSULTING FIRM