According to IBM, ransomware prevention saw massive improvements in 2022, while ransomware time to deploy (TTD) dopped by 94%, just two findings derived from billions of datapoints collected in 2022 from network and endpoint devices by IBM and reported on in their “X-Force Threat Intelligence Index 2023.” This is a wide-ranging report with excellent stats:
- 27% – Percentage of attacks included extortion – 30% aimed at manufacturing
- 21% – Share of incidents that saw backdoors deployed – the top action on objective
- 17% – Ransomware’s share of attacks (down from 21% in 2021)
- 41% – Percentage of incidents involving phishing for initial access
- 26% – Exploited public-facing applications
- 100% – Increase in the number of thread hijacking attempts per month
Top impacts 2022
- 21% – Extortion
- 19% – Data theft
- 11% – Credential harvesting
- 11% – Data leak
- 9% – Brand reputation
This is a bit of mixed bag. But at least the fact that ransomware is being stopped is good news.
Morten Gammelgaard, EMEA, co-founder of BullWall had this to say:
“It is excellent news that ransomware prevention is improving, if for no other reason than it diverts cybercriminals away from executing attacks to developing new tactics, which they will. With extortion, data theft, data leaks and brand reputation being the top 4 out of 5 ways ransomware impacted organizations in 2022, organizations cannot rely solely on prevention and need to also consider active defense/containment strategies to catch the attacks that bypass prevention-based tools. When an active attack is unable to encrypt or exfiltrate data, organizations are given time to respond, eliminating 80% of the potential impact to their business.”
David Maynor, Senior Director of Threat Intelligence at Cybrary followed up with this:
“There are three kinds of lies: lies, damn lies, and ransomware stats. For the last couple of months depending on who you ask ransomware attacks and becoming less of a problem or they are increasing. If your risk model is based on arbitrary thresholds like at 20% we don’t address it but we take it seriously at 21% of attacks seen…you have already lost and a ransomware actor is probably watching you read this.”
Hopefully when this report comes out in 2024, we see more ransomware being stopped which means by extension that ransomware is less profitable for the people behind ransomware.
Like this:
Like Loading...
Related
This entry was posted on February 22, 2023 at 3:24 pm and is filed under Commentary with tags IBM. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Time To Deploy Ransomware Down… Successful Ransomware Prevention Up: IBM
According to IBM, ransomware prevention saw massive improvements in 2022, while ransomware time to deploy (TTD) dopped by 94%, just two findings derived from billions of datapoints collected in 2022 from network and endpoint devices by IBM and reported on in their “X-Force Threat Intelligence Index 2023.” This is a wide-ranging report with excellent stats:
Top impacts 2022
This is a bit of mixed bag. But at least the fact that ransomware is being stopped is good news.
Morten Gammelgaard, EMEA, co-founder of BullWall had this to say:
“It is excellent news that ransomware prevention is improving, if for no other reason than it diverts cybercriminals away from executing attacks to developing new tactics, which they will. With extortion, data theft, data leaks and brand reputation being the top 4 out of 5 ways ransomware impacted organizations in 2022, organizations cannot rely solely on prevention and need to also consider active defense/containment strategies to catch the attacks that bypass prevention-based tools. When an active attack is unable to encrypt or exfiltrate data, organizations are given time to respond, eliminating 80% of the potential impact to their business.”
David Maynor, Senior Director of Threat Intelligence at Cybrary followed up with this:
“There are three kinds of lies: lies, damn lies, and ransomware stats. For the last couple of months depending on who you ask ransomware attacks and becoming less of a problem or they are increasing. If your risk model is based on arbitrary thresholds like at 20% we don’t address it but we take it seriously at 21% of attacks seen…you have already lost and a ransomware actor is probably watching you read this.”
Hopefully when this report comes out in 2024, we see more ransomware being stopped which means by extension that ransomware is less profitable for the people behind ransomware.
Share this:
Like this:
Related
This entry was posted on February 22, 2023 at 3:24 pm and is filed under Commentary with tags IBM. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.