Ransomware attacks are growing in number and sophistication, targeting organizations hit hardest by the Covid-19 pandemic. This is according to a new report from IBM security arm, the Security X-Force Incident Response.
Since the beginning of 2020, ransomware attacks have “exploded”, explains the report, representing a quarter of all cyberattacks recorded. June was the worst month by far, with a third of the year's ransomware attacks taking place in the first month of summer.
Ransom demands are also increasing exponentially, according to IBM’s security team, with the figure passing $40 million in some cases.
Of all the different ransomware families, Sodinokibi still appears to be the most common, accounting for a third of all ransomware incidents registered this year to date.
Criminals see schools and universities as the most attractive targets, mostly because they are among the organizations hit hardest by Covid-19 - and were also forced to go digital within a very short period.
When it comes to damage limitation, IBM hints that paying the ransom fee is not the correct strategy.
“Ransom payments encourage attackers to continue their activity, validate their business model and incentivize additional cybercriminals to participate in this type of attack activity,” explained the firm.
Instead, IBM recommends businesses establish and maintain offline backups, implement strategies to prevent unauthorized data access, and employ user behavior analytics and pen testers to identify potential vulnerabilities.