Ransomware Takes Center Stage in Q2 2023
Nuspire’s Q2 2023 Cyber Threat Report Shows Rapid Growth of CL0P Ransomware Gang
COMMERCE, MI (Aug. 22, 2023) Nuspire, a leading managed security services provider (MSSP), today announced the release of its Q2 2023 Cyber Threat Report. The quarterly report provides a comprehensive analysis of the threat landscape, examining threat data encompassing malware, botnets and exploits, as well as specific tactics, techniques and procedures (TTPs) organizations should watch out for.
Nuspire’s latest report reveals a surge in ransomware activity, with a staggering 65% increase in activity from a newer entrant to the list of top ransomware groups: CL0P. A deep dive into the financial industry showed a 43% increase in ransomware extortions.
“Ransomware groups like LockBit and CL0P have driven a significant rise in attacks over the last several months because of their relentless exploitation of zero-day and known vulnerabilities,” said J.R. Cunningham, Chief Security Officer at Nuspire. “MOVEit Transfer is a recent example of the scale and scope these attacks can take; however, our data shows that older vulnerabilities like Apache Software continue to be ripe for exploitation. This tells us that many organizations still lack sufficient patch and vulnerability management operations, greatly increasing their risk of exposure.”
Notable findings from Nuspire’s newly-released cyber threat report include:
- Total ransomware extortion publications increased by nearly 18%.
- Apache vulnerabilities comprise 25% of exploits*. Apache Software can be found in approximately 31% of all global websites, making this finding particularly concerning.
- Botnets grewapproximately 16% in Q2, with Torpig Mebroot, a trojan renowned for its data-theft capabilities maintaining its position as the top botnet detected.
“The latest IDC research on ransomware showed the incidents rates have grown considerably since the July 2021 sample. Only 22% of organizations (in the March 2023 sample) attacked by ransomware were able to recover data/files without paying a ransom,” said Cathy Huang, Research Director for Security Services at IDC. “It’s critical that organizations take a proactive approach to cybersecurity. This includes threat/vulnerability investigation process, adversary identification and overall cybersecurity posture and prevention. Pairing up a cybersecurity program with strong cyber-recovery capabilities enables an organization to have the necessary cyber resilience during and after an attack.”
Access Nuspire’s Q2 2023 Cyber Threat Report to view the data and learn key mitigation strategies for protecting your organization’s environment.
*Excluding the top exploit, brute forcing, which clocked such a high volume that it prevented the ability to see data from other exploits clearly.
About Nuspire
Nuspire is a managed security services provider (MSSP), offering managed security services (MSS), managed detection and response (MDR), endpoint detection and response (EDR) that supports best-in-breed EDR solutions, and cybersecurity consulting services (CSC) that includes incident readiness and response, threat modeling, digital forensics, technology optimization, posture assessments and more. Our self-service, technology-agnostic platform, myNuspire, allows greater visibility into your entire security program. Powered by the self-healing, always on Nuspire Cyber X Platform (CXP), myNuspire will help CISOs alleviate the pain associated with tech sprawl, provide intelligence-driven recommendations, solve for alert fatigue and help their clients become more secure over time. Our deep bench of cybersecurity experts, award-winning threat intelligence and two 24×7 security operations centers (SOCs) detect, respond and remediate advanced cyber threats. Our client base spans thousands of enterprises, from midsized to large enterprises across multiple industries and geographic footprints. For more information, visit https://www.nuspire.com and follow us on LinkedIn @Nuspire.
###