There was an “alarming” surge in exercise by the Conti ransomware gang in the initial a few months of 2022, according to Ivanti’s Ransomware Index Report Q1 2022, carried out in conjunction with Cyber Security Works and Cyware.
The cybersecurity enterprise claimed it observed a 7.6% increase in the number of vulnerabilities tied to ransomware in Q1 2022. It uncovered that the Conti group exploited most of these (19/22).
The notorious cyber-felony group has been responsible for a lot of large-profile ransomware incidents in recent years, including a recent attack on US production firm Parker-Hannifin. Conti is thought to have ties to the Russian condition and released a statement strongly supporting the Kremlin’s invasion of Ukraine in February.
Previous week, Costa Rica declared a nationwide emergency following sustained cyber-attacks on governing administration methods by Conti.
The new report also unveiled a 7.5% maximize in APT groups associated with ransomware, a 6.8% increase in actively exploited and trending vulnerabilities and a 2.5% boost in ransomware families in Q1.
In addition, there are symptoms that ransomware operators are turning into much more qualified and complex in their solution. Ivanti researchers claimed that these teams are exploiting vulnerabilities within just 8 times of patches getting introduced by sellers. This implies any “minor laxity” in security actions by third parties is adequate for ransomware operators to infiltrate susceptible networks.
Worryingly, the research uncovered that extra than 3.5% of ransomware vulnerabilities are getting missed by scanners, further exposing organizations to dangers. Gaps also exist within just the Nationwide Vulnerability Database (NVD), the Widespread Attack Pattern Enumeration and Classification (CAPEC) list by The MITRE Corporation and the Recognized Exploited Vulnerabilities (KEVs) catalog by the US Cybersecurity and Infrastructure Security Agency (CISA), in accordance to the findings.
Anuj Goel, co-founder and CEO at Cyware, commented: “Ransomware is now one particular of the most predominant attack vectors impacting the bottom line of businesses globally. The Q1 report underscores the actuality with new figures that display an boost in the amount of ransomware vulnerabilities and the APTs applying ransomware. Even so, one of the key considerations that has surfaced is the lack of complete risk visibility for security teams owing to cluttered menace intelligence obtainable throughout resources.
Some parts of this article are sourced from:
www.infosecurity-magazine.com
Twitter says it won't amplify false content during a crisis