The Readable’s subscribers can access a monthly ransomware report by S2W. The report includes specific numbers about ransomware groups and their victims in addition to the numbers of newly opened data leak sites by ransomware groups. By reviewing these numbers, our readers will be able to get an idea of the overall threat landscape of the ransomware ecosystem. Sojun Ryu for The Readable provides reports representing his team’s work regarding threat intelligence.
Takeaways
In January 2023:
- No new data leak sites have been discovered this month. Moreover, Hive ransomware group’s leak site has been taken down by the coordinated work of law enforcement officials from the United States, Germany, and the Netherlands.
- A total of 153 companies’ data was uploaded onto leak sites by ransomware groups. This is the lowest number in the past five months. LockBit was the most active ransomware group, uploading 51 companies’ data onto their leak sites.
- Companies in the United States were targeted the most by ransomware groups, making up 39.4% of the total percentage.
Specifics
Newly discovered or changed data leak sites in January 2023
Ransomware groups and activities in January 2023: Percentage of each ransomware group in companies that were uploaded onto data leak sites
Top five countries by number of leak sites their data appeared on
Top five industries by number of leak sites their data appeared on
The next monthly ransomware index report will be published in early March.
