Skip to content

Emerging ransomware groups on the rise: Who they are, how they operate

Posted by: GuidePoint Security

< 1 min read

May 22, 2024 – Published on CSO Online

New and developing ransomware gangs are moving to fill the void left by the shutdown and law enforcement disruption of big players, with differing tactics and targets.

The shutdown of BlackCat (ALPHV) in March and the law enforcement disruption of LockBit infrastructure in February have created a void in the ransomware ecosystem that’s quickly being filled by less experienced groups.

So far this year, 25 new ransomware groups have posted at least one victim on their data leak sites. Other established but previously smaller gangs have also increased their operational tempos in recent months, now occupying the top spots in monthly victim counts.

“While we continue to track the ransomware landscape to determine long-term changes, we anticipate formerly ‘mid-tier’ Developing and Established ransomware groups to become increasingly visible, either due to the attrition of more prolific competitors or due to shifting affiliate alignment,” researchers from security firm GuidePoint Security wrote in a recent report that notes the same trend.

Read More HERE.

Categories: Incident Response & Threat Intelligence
Tags:GRITransomware

GuidePoint Security

GRIT Ransomware Report: April 2024
Additional contributors to this report: Nic Finn, Grayson North, Justin Timothy April 2024 presented as an outlier amidst the preceding […]
View Page

Related Articles

View All

  • GRIT Blog
GRIT Ransomware Report: April 2024
Posted by: Jason Baker
Published 05/16/24, 08:50am
Read More 14 min read
  • Incident Response & Threat Intelligence
GRIT Ransomware Report-2024-Q1
Read More < 1 min read
  • Incident Response & Threat Intelligence
Alphv and LockBit lose top spot to a smaller ransomware group
Read More < 1 min read