Unpatched vulnerabilities most exploited by ransomware gangs: Report


New Delhi, Jan 27 (IANS): Unpatched vulnerabilities remain the most prominent attack vectors exploited by ransomware groups and in 2021, 65 new vulnerabilities tied to ransomware were discovered, representing a 29 per cent growth over 2020 and bringing the total number of vulnerabilities associated with ransomware to 288, a new report showed on Thursday.

The report by US-based IT software firm Ivanti, conducted with Cyber Security Works and threat intelligence firm Cyware, also identified 32 new ransomware families in 2021, bringing the total to 157 and representing a 26 per cent increase over the previous year.

"Ransomware groups are becoming more sophisticated, and their attacks more impactful. These threat actors are increasingly leveraging automated tool kits to exploit vulnerabilities and penetrate deeper into compromised networks," said Srinivas Mukkamala, Senior Vice President of Security Products at Ivanti.

The report also found that these ransomware groups are continuing to weaponise zero-day vulnerabilities in record time to instigate crippling attacks.

"At the same time, they are broadening their attack spheres and finding newer ways to compromise organisational networks and fearlessly trigger high-impact assaults," the findings showed.

According to Coveware, organisations pay an average of $220,298 and suffer 23 days of downtime following a ransomware attack.

"This calls for an increased emphasis on cyber hygiene. Looking ahead, automating cyber hygiene will become increasingly important, especially as environments continue to get more complicated," the report emphasised.

Ransomware groups are increasingly targeting supply chain networks to inflict major damage and cause widespread chaos.

A single supply chain compromise can open multiple avenues for threat actors to hijack complete system distributions across hundreds of victim networks.

 

  

Top Stories


Leave a Comment

Title: Unpatched vulnerabilities most exploited by ransomware gangs: Report



You have 2000 characters left.

Disclaimer:

Please write your correct name and email address. Kindly do not post any personal, abusive, defamatory, infringing, obscene, indecent, discriminatory or unlawful or similar comments. Daijiworld.com will not be responsible for any defamatory message posted under this article.

Please note that sending false messages to insult, defame, intimidate, mislead or deceive people or to intentionally cause public disorder is punishable under law. It is obligatory on Daijiworld to provide the IP address and other details of senders of such comments, to the authority concerned upon request.

Hence, sending offensive comments using daijiworld will be purely at your own risk, and in no way will Daijiworld.com be held responsible.