Keeping up with threat landscape trends is crucial to your organization's protection from cybercrime. In this article by Symantec, you'll learn about new strategies that ransomware gangs are employing to get around standard cybersecurity software. The article features intelligence from Symantec's 2024 ransomware threat report.
What are the main trends in ransomware for 2024?
Organizations should note that ransomware is increasingly a global issue, with attackers targeting non-English-speaking countries. Additionally, there is a growing trend of exploiting recently patched vulnerabilities, as attackers begin scanning for unpatched systems immediately after software updates. Lastly, encryption-free attacks are on the rise, where data theft is used as leverage for extortion without the need for encryption.
How can organizations protect themselves from ransomware?
To reduce the risk of ransomware, organizations should adopt a defense-in-depth strategy that employs multiple detection, protection, and hardening technologies. It's also crucial to deepen their understanding of current infection vectors used in ransomware attacks, which will help identify potential weaknesses and strengthen their defensive posture.
What tools are commonly used by ransomware attackers?
Ransomware attackers are increasingly using legitimate software tools rather than traditional malware. The most commonly used tools include Windows operating system components like PsExec, PowerShell, and WMI. Additionally, remote desktop and administration software such as AnyDesk and ConnectWise are frequently introduced into targeted networks by attackers.
Sign in with LinkedIn