The Two Gangs Responsible For Half Of The Ransomware Attacks In Q1 2022

Share post:

Analysis of recorded ransomware attacks between January and March 2022 highlighted LockBit 2.0 and Conti as the two most active ransomware gangs.

While the two gangs accounted for 58% of all incidents, LockBit was more prolific with 38% of ransomware attacks. Conti ransomware group accounted for 20% of ransomware attacks in the same period.

The analysis was recorded by cybersecurity researchers at Digital Shadows. According to the researchers, LockBit leaked the information of more than 200 victims in the first quarter of 2022, the highest number of leaks to date in 2022.

Both PYSA ransomware which is the third most active ransomware group, and REvil seem to have disappeared or stopped working.

New ransomware gangs are however coming up to replace those no longer working. Some of the new ransomware groups include Stormus, Night Sky, Zeon, Pandora, Sugar, and x001xs.

To protect themselves from ransomware attacks, organizations are advised to apply security patches to software and operating systems as quickly as possible.

In addition, organizations must enable multi-factor authentication for all users. This will help provide an additional layer of security.

The sources for this piece include an article in ZDNet.

Featured Tech Jobs


Related articles

Canada, U.S. sign international guidelines for safe AI development

Eighteen countries, including Canada, the U.S. and the U.K., today agreed on recommended guidelines to developers in their nations for the secure design, development, deployment, and operation of artificial intelligent systems. It’s the latest in a series of voluntary guardrails that nations are urging their public and private sectors to follow for overseeing AI in

Cyber Security Today, Nov. 27, 2023 – Ransomware gang posts data stolen from a Canadian POS provider, and more

This episode reports on the latest ransomware attacks, and details of how a gang that scams people selling used products on

Cyber Security Today, Week in Review for the week ending November 24, 2023

This episode features discussion on Australia's decision to not make ransowmare payments illegal, huge hacks of third-party service suppliers in Canada and the U.S. and whether email and smartphone service providers are doing enough to protect

Cyber Security Today, Nov. 24, 2023 – A warning to tighten security on Kubernetes containers, and more

This episode reports on the increasing number of vulnerable Kubernetes containers online, the latest acknowledged data breaches, a browser scam aimed at Macs

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways