A study by Secureworks, a cybersecurity company, shows that ransomware has seen its effectiveness increase very significantly in just one year. It takes them less than a day to encrypt your files and prevent you from accessing them.
Among all the types of existing malware, there is no doubt that you are familiar with ransomware, or ransomware in the language of Moliere. These programs lock files on your computer or smartphone, preventing you from accessing them, and ask you to pay to make them available again. There is no shortage of examples. Between the one who encrypts himself to avoid detection by anti-viruses, the one who disguises himself as a fake Windows update, or the one who pretends to be a cybersecurity solution, there is plenty of choice.
However, one common point emerges, apart from wanting to extract money from you: ransomware is increasingly quick to act. This is what emerges from a study carried out by the cybersecurity firm Secureworks. In 2022, it took on average 4 and a half days between infection by the program and the deployment of the encryptor, the one that blocks your data. Today it takes less than 24 hours. In 10% of observed cases, file encryption is done within 5 hours of the intrusion.
However, one common point emerges, apart from wanting to extract money from you: ransomware is increasingly quick to act. This is what emerges from a study carried out by the cybersecurity firm Secureworks. In 2022, it took on average 4 and a half days between infection by the program and the deployment of the encryptor, the one that blocks your data. Today it takes less than 24 hours. In 10% of observed cases, file encryption is done within 5 hours of the intrusion.
RANSOMWARE CAN BLOCK YOUR FILES IN LESS THAN 5 HOURS
What motivates hackers to try so hard to move fast? Quite simply those deployed by detection systems. “The cybersecurity industry has become much better at detecting ransomware precursor activity. As a result, actors […] are focusing on operations that are simpler and quicker to implement […]” explains Don Smith of the threat response unit at Secureworks.
Hackers therefore have no choice. If they want to compete with increasingly fast and efficient detection programs, they need to create ransomware that acts even faster. What does not change, however, are the methods used to deploy their malware: theft of poorly protected credentials and infections via phishing emails remain very common.
Hackers therefore have no choice. If they want to compete with increasingly fast and efficient detection programs, they need to create ransomware that acts even faster. What does not change, however, are the methods used to deploy their malware: theft of poorly protected credentials and infections via phishing emails remain very common.
Greetings !!!