Ransomware attacks are on the rise, with cybersecurity teams increasingly targeted during off-duty hours, according to the latest ThreatDown 2024 State of Ransomware report from Malwarebytes [2].
Description
Global ransomware attacks have increased by 33% in the past year [3], with the UK and US seeing significant upticks. Cybercriminals are strategically launching attacks between 1am and 5am, when security personnel are typically less vigilant [2]. By attacking at night and on weekends [1], they aim to catch IT staff off guard and limit their availability for detection and response. The entire ransomware attack process [1], from initial access to encryption [1], now takes hours instead of weeks [1]. Threat actors are constantly evolving their tactics to evade detection by traditional tools, using living-off-the-land techniques to outmaneuver cybersecurity defenses.
Conclusion
These off-hour attacks have serious implications for cybersecurity teams, as they are caught unaware and have limited availability for response. To mitigate these risks, organizations need to enhance their security measures and ensure round-the-clock monitoring. As threat actors continue to evolve their tactics, it is crucial for cybersecurity teams to stay vigilant and adapt to the changing landscape of ransomware attacks.
References
[1] https://www.infosecurity-magazine.com/news/most-ransomware-attacks-happen/
[2] https://datafort.com/ransomwares-midnight-surge-why-cyberattacks-spike-while-we-sleep/
[3] https://www.techrepublic.com/article/ransomware-trends-malwarebytes/
