Security Market Segment LS
  2. Home
  3. Business IT
  4. Security
  5. Microsoft-owned GitHub pulls PoC for Exchange Server flaws
Monday, 17 May 2021 11:38

Zscaler identifies industries worst hit by double-extortion ransomware

By
Zscaler CISO and vice president of security research Deepen Desai Zscaler CISO and vice president of security research Deepen Desai

Zscaler's latest ransomware report says manufacturing is the industry most targeted by double-extortion ransomware.

Double-extortion ransomware exfiltrates data as well as encrypting it. The idea is that if the victim declines to pay the ransom (eg, because they are able to recover the files through internal processes), they can be extorted to prevent their data being released to the public.

The industries most commonly targeted in this way were manufacturing (12.7%), services (8.9%), transportation (8.8%), retail and wholesale (8.3%), and technology (8%).

In late 2020, Zscaler ThreatLabz noticed the addition of synchronised DDoS attacks, overloading victims' websites and putting additional pressure on them to pay up.

"Over the last few years, the ransomware threat has become increasingly dangerous, with new methods like double extortion and DDoS attacks making it easy for cybercriminals to sabotage organisations and do long-term damage to their reputation," said Zscaler CISO and vice president of security research Deepen Desai.

"Our team expects ransomware attacks to become increasingly targeted in nature where the cybercriminals hit organisations with a higher likelihood of ransom payout.

"We analysed recent ransomware attacks where cybercriminals had the knowledge of things like the victim's cyber insurance coverage as well as critical supply-chain vendors bringing them in the crosshairs of these attacks.

"As such, it is critical for businesses to better understand the risk ransomware represents and take proper precautions to avoid an attack. Always patch vulnerabilities, educate employees on spotting suspicious emails, back up data regularly, implement data loss prevention strategy, and use zero trust architecture to minimise the attack surface and prevent lateral movement."

ThreatLabz analysed over 150 billion platform transactions and 36.5 billion blocked attacks between November 2019 and January 2021 to identify emerging ransomware variants, their origins, and how to stop them.

ITWIRE ZSCALER RANSOMWARE INFECTIONS BY INDUSTRY

The five most common malware families during the last year were Maze/Egregor (seemingly ceased operations in November 2020), Conti, Doppelpaymer (often demanding large ransoms), Sodinokibi/REvil/Sodin,and DarkSide (ransomware-as-a-service).

The ThreatLabZ Ransomware Review: The Advent of Double Extortion" is available for download (registration required).

Zscaler's virtual event Zenith Live (free registration) will include a presentation by the ThreadLabZ team on advances in ransomware.

Read 1682 times

Please join our community here and become a VIP.

Subscribe to ITWIRE UPDATE Newsletter here
JOIN our iTWireTV our YouTube Community here
BACK TO LATEST NEWS here

GET READY FOR XCONF AUSTRALIA 2022

Thoughtworks presents XConf Australia, back in-person in three cities, bringing together people who care deeply about software and its impact on the world.

In its fifth year, XConf is our annual technology event created by technologists for technologists.

Participate in a robust agenda of talks as local thought leaders and Thoughtworks technologists share first-hand experiences and exchange new ways to empower teams, deliver quality software and drive innovation for responsible tech.

Explore how at Thoughtworks, we are making tech better, together.

Tickets are now available and all proceeds will be donated to Indigitek, a not-for-profit organisation that aims to create technology employment pathways for First Nations Peoples.

Click the button below to register and get your ticket for the Melbourne, Sydney or Brisbane event

GET YOUR TICKET!

PROMOTE YOUR WEBINAR ON ITWIRE

It's all about Webinars.

Marketing budgets are now focused on Webinars combined with Lead Generation.

If you wish to promote a Webinar we recommend at least a 3 to 4 week campaign prior to your event.

The iTWire campaign will include extensive adverts on our News Site itwire.com and prominent Newsletter promotion https://itwire.com/itwire-update.html and Promotional News & Editorial. Plus a video interview of the key speaker on iTWire TV https://www.youtube.com/c/iTWireTV/videos which will be used in Promotional Posts on the iTWire Home Page.

Now we are coming out of Lockdown iTWire will be focussed to assisting with your webinars and campaigns and assistance via part payments and extended terms, a Webinar Business Booster Pack and other supportive programs. We can also create your adverts and written content plus coordinate your video interview.

We look forward to discussing your campaign goals with you. Please click the button below.

MORE INFO HERE!

BACK TO HOME PAGE
Published in Security
Tagged under
Stephen Withers

Stephen Withers is one of Australia¹s most experienced IT journalists, having begun his career in the days of 8-bit 'microcomputers'. He covers the gamut from gadgets to enterprise systems. In previous lives he has been an academic, a systems programmer, an IT support manager, and an online services manager. Stephen holds an honours degree in Management Sciences and a PhD in Industrial and Business Studies.

Latest from Stephen Withers

Related items

More in this category: « CIA-backed firm claims DarkSide ransomware site has shut down archTIS secures additional $535,000 contract with security agency »
Share News tips for the iTWire Journalists? Your tip will be anonymous
back to top

WEBINARS ONLINE & ON-DEMAND

GUEST ARTICLES

VENDOR NEWS

Guest Opinion

Guest Interviews

Guest Reviews

Guest Research

Guest Research & Case Studies

Channel News

Comments