Ransomware Watch: Top Targets and Threat Actors Revealed

Last week saw a significant uptick in ransomware activity, with the United States bearing the brunt of these attacks, according to insights from DARKFEED. They reported over 100 attacks targeting US entities, far surpassing other nations like the UK, Italy, France, and Germany, which each saw single-digit attack counts. This geographical focus highlights the persistent attractiveness of the US market for cybercriminals.

The healthcare and manufacturing sectors were particularly hard-hit, each experiencing 25% of the total reported attacks. Business services also featured prominently. This trend underscores the critical need for robust security measures in industries that handle sensitive data or are vital to economic operations. The concentration of attacks in these sectors suggests attackers are prioritizing high-impact targets.

When it comes to active threat groups, DARKFEED identified DragonForce as the most prolific actor, followed closely by Qilin and Lockbit. Akira and INC also remained active. With a total of 215 attacks logged, the threat landscape remains dynamic and demands constant vigilance from security teams.