Ransomware attacks have impacted only 25% of U.S. organizations during the past year, representing a 61% drop from 2021, according to VentureBeat.
Sixty-eight percent of companies hit by ransomware paid demanded ransoms last year, compared with 82% in 2021, a report from Delinea revealed. However, the rate of organizations with incident response plans declined from 94% in 2021 to 71% in 2022, indicating that entities are becoming increasingly complacent against ransomware attacks.
"Ransomware is still a significant concern and threat to any organization, and some of the signs of complacency we saw evidenced in the survey research could be a harbinger of an increase in ransomware in 2023," said Delinea Chief Security Scientist and Advisory Chief Information Security Officer Joseph Carson.
Carson noted that the persistent threat of ransomware attacks should prompt organizations to invest in proactive cybersecurity measures aimed at strengthening their identity and access controls, such as multi-factor authentication and password vaulting.
Ransomware attack prevalence drops
Ransomware attacks have impacted only 25% of U.S. organizations during the past year, representing a 61% drop from 2021, according to VentureBeat.
Malicious QR code messages have also been increasingly leveraged to compromise the sector, with Office 365 used to send over 15,000 of such messages to education entities, a Microsoft Threat Intelligence report showed.
Misconfigured Magento or OpenCart instances may have been targeted to facilitate the deployment of Mongolian Skimmer, which uses various event-handling methods to ensure extensive compatibility while hiding malicious activity with heavy Unicode character utilization.