At a glance.
- Ransomware report: targeting and classification.
- Phishing remains a major threat.
- Cisco addresses expired certificate issue.
- LockBit and Medusa hit school districts.
- US and Canadian cyber units wrap up hunt-forward mission in Latvia.
- An unknown threat actor is collecting against both Russia and Ukraine.
Ransomware report: targeting and classification.
GuidePoint Security today released their GRIT Ransomware Report for April 2023. The total number of organizations affected dropped 22% from March to April. The United States maintains its place atop the leaderboard when it comes to being victimized by ransomware: the US had one-hundred-seventy-nine victims, whereas the runner-up, the United Kingdom, came in with a distant eighteen. The most widespread ransomware threats to the US have been LockBit, Bianlian, and ALPHV. Manufacturing was, by far, the most targeted industry, followed by healthcare and technology. Looking at the gangs themselves, LockBit’s numbers continued to grow this month, ALPHV nearly doubled the number of itsvictims in the past month, and the researchers say April marked the “most impactful” month for Bianlian, which increased its victim count from twenty-seven in March to forty-five in April.