System security experts have seen a significant increase in ransomware attacks, particularly after many employers moved to establish a remote workplace as a result of the pandemic.
Not only is the number of attacks rising, the sophistication of those attacks is increasing. Many ransomware attacks not only encrypt all the files on an infected system, they also steal sensitive data, which results in a double payoff to the cybercriminal - ransom to unlock the system and payment from selling the stolen data.
Today's primary targets include financial services firms, IT, government, and manufacturing; however, no organization, no matter the size, are safe.
Five of the more threatening attacks facing businesses in 2020-2021 are:
Maze: A well-known ransomware that both encrypts data and steals sensitive information and publishes the victim's files on the internet. IT and health care entities have been recent targets.
REvil: This ransomware also encrypts the victim's data and is known to double the ransom if the initial request is not paid in time. A media and entertainment law office was a recent victim of REvil, which compromised the personal information of some well-known celebrities.
Ryuk: A major player among cyberattacks, this crypto-ransomware focuses on large businesses and government agencies. It uses other malware files to infect the system, as well as strong algorithms to encrypt files.
Tycoon: This unique ransomware uses Java language and targets Windows and Linux. Although the number of victims is relatively low, it has recently become more aggressive. It exploits weak or compromised passwords and uses a variety of tactics to stay hidden.
NetWalker: Also known as Mailto, NetWalker is new to the ransomware scene, and seems to attack remote networks. The malware infects a network primarily via phishing emails and executable files. Pallavi Dutta "Top 5 Ransomware Attacks to Watch Out for in 2020-2021" securityboulevard.com (Sep. 03, 2020).