Ransomware is continuing its growth curve as 16,017 new ransomware modifications ended up discovered in the second quarter, including ones belonging to eight new malware families, researchers said.
This is more than double the number of new samples detected a year ago, in Q2 2018 (7,620), said researchers at Kaspersky in the company’s IT Threat Evolution Q2 2019 report.
A Trojan-Ransom can be equally successful in private and corporate attacks, as its functionality is simple yet highly effective. These Trojans encrypt files on a user’s computer and demand a ransom for the files to be released. The increase in malicious modifications and the appearance of new families is a sign criminal activity is intensifying, with new malware versions emerging.
The second quarter experienced a high number of infection attempts. Along those lines, 232,292 unique users were targeted by such attacks, which was 46 percent more than a year ago, in Q2 2018 (158,921), according to Kaspersky data. The countries with the largest share of attacked users were Bangladesh (9 percent), Uzbekistan (6 percent) and Mozambique (4 percent).
The ransomware family that attacked users most often in Q2 2019 (23.4 percent cases) was still WannaCry. Even though Microsoft released a patch for its operating system to close the vulnerability exploited by the ransomware two years ago, it still remains in the wild. Another major actor was Gandcrab with 13.8 percent share, despite its creators announcing that GandCrab wasn’t going to be distributed from the second half of the quarter.
“In this quarter we observed an increase in the number of new ransomware modifications, even though the Gandcrab family closed down in early June,” said Fedor Sinitsyn, security researcher at Kaspersky. “The GandCrab ransomware family has long been one of the most popular cryptors amongst cybercriminals. For more than 18 months it has stayed in the list of the most rampant ransomware families we detect, but even its decline did not lower the statistics, as there are still other numerous widespread Trojans. The GandCrab case is a good illustration of how effective ransomware can be, with its creators stopping their malicious activity after claiming they made a tremendous amount of money by extorting funds from their victims. We expect new actors to replace GandCrab and urge everyone to protect their devices by installing software updates regularly and choosing a reliable security solution.”
Other report findings include:
• Kaspersky detected and repelled 717,057,912 malicious attacks from online resources located in around 200 countries and territories around the world (26 percent decrease compared to Q2 2018)
• Attempted malware infections that aim to steal money via online access to bank accounts were registered on 228,206 user computers (six percent growth compared to Q2 2018)
• Kaspersky’s antivirus file detected a total of 240,754,063 unique malicious and potentially unwanted objects (25 percent growth compared to Q2 2018)
• Kaspersky mobile security products also detected 753,550 malicious installation packages (57 percent decrease compared to Q2 2018)
Click here for more of the Kaspersky’s IT Threat Evolution Report Q2 2019.