• Research
  • Intelligence Blogs
Ransomware Resurgence: A Deep Dive into 2023’s Threatscape and Risk Assessment

🔐 Ransomware Resurgence: A Deep Dive into 2023’s Threatscape and Risk Assessment

Threat Research & Intelligence Center S2W TALON has published a report on the topic of 2023 Ransomware Trends. At DCC2024 (Digital Crimes Consortium), this report was presented, in which TALON constructed a risk scoring system based on the activity of ransomware throughout 2023, aiming to pinpoint the most impactful ransomware groups.

In this report, S2W TALON examined the trends of #ransomware groups active in 2023 identifying the operational characteristics of each group and describing them from 5 perspectives:

📌Activity: The number of victim organizations uploaded to ransomware leak sites increased by 1.6 times in 2023 compared to 2022. 50% of the victim organizations uploaded to leak sites in 2023 were affected by the top 5 ransomware groups with high activity.

📌Influence: The number of attacks on specific industries such as the non-profit sector and government increased. Also, ransomware groups that target big organizations with a particularly high percentage have been identified.

📌Brand Continuity: 26 groups updated their ransomware versions during 2023. 18 ransomware groups were identified as having possibly rebranded by changing their brand names.

📌Extensibility: Ransomware groups operate with a systematized division of roles for organizational operation and infrastructure expansion. They build their main infrastructure on the dark web.

📌Vulnerability: At least 13 ransomware groups use vulnerabilities in their attacks.

🧑‍💻 Report Author: Kyunghee Kim, Jiho Kim and Huiseong Yang | S2W Talon

👉 Learn more:

If you have any questions about our cybersecurity reports, please don't hesitate to contact us.