By using this site, you agree to the Privacy Policy and Terms of Use.
Accept
10alert.com10alert.com
  • Threats
    • WordPress ThreatsDanger
    Threats
    A cyber or cybersecurity threat is a malicious act that seeks to damage data, steal data, or disrupt digital life in general. Cyber threats include…
    Show More
    Top News
    Web Malware: Out of the Shadows and Hiding in Plain Sight
    8 months ago
    7 Reasons Kaspersky Internet Security 2015 is better than ever
    8 months ago
    Multi-stage phishing that starts with real links
    8 months ago
    Latest News
    Safeguards against firmware signed with stolen MSI keys
    2 days ago
    WPDeveloper Addresses Privilege Escalation Vulnerability in ReviewX WordPress Plugin
    2 days ago
    Wordfence Intelligence Weekly WordPress Vulnerability Report (May 15, 2023 to May 21, 2023)
    1 week ago
    Wordfence Firewall Blocks Bizarre Large-Scale XSS Campaign
    1 week ago
  • Fix
    Fix
    Troubleshooting guide you need when errors, bugs or technical glitches might ruin your digital experience.
    Show More
    Top News
    Critical vulnerability fixed in popular WordPress plugin Jetpack
    Critical vulnerability fixed in popular WordPress plugin Jetpack
    8 months ago
    Windows 10 22H2 new features and changes
    8 months ago
    Windows 11 build 22000.652 (KB5012643) out as preview
    8 months ago
    Latest News
    How automatically delete unused files from my Downloads folder?
    4 months ago
    Now you can speed up any video in your browser
    4 months ago
    How to restore access to a file after EFS or view it on another computer?
    4 months ago
    18 Proven Tips to Speed Up Your WordPress Site and Improve SEO | 2023 Guide
    5 months ago
  • How To
    How ToShow More
    What is two-factor authentication | Kaspersky official blog
    3 days ago
    Acer refreshes Windows 11 PCs for work and play: Swift Edge 16 and Predator Triton 16
    5 days ago
    NVIDIA GeForce RTX 4080 New Mercury Editions of Razer Blade 16 and Blade 18 now available
    5 days ago
    How Oxy uses hooks for maximum extensibility
    How Oxy uses hooks for maximum extensibility
    6 days ago
    The personal threat landscape: securing yourself smartly
    6 days ago
  • News
    News
    This category of resources includes the latest technology news and updates, covering a wide range of topics and innovations in the tech industry. From new…
    Show More
    Top News
    Simple Internet Safety Rules
    8 months ago
    How to find out the hidden age in Vkontakte?
    8 months ago
    How to remove the background from a photo?
    8 months ago
    Latest News
    How to create virtual drive (VHD, VHDX, Dev Drive) on Windows 11
    3 days ago
    How to enable Taskbar End Task option to close apps on Windows 11
    3 days ago
    How to check USB4 devices specs from Settings on Windows 11
    3 days ago
    How to enable new header UI for File Explorer on Windows 11
    1 week ago
  • Glossary
  • My Bookmarks
Reading: 2016 Stat: 75% of ransomware comes from Russian-speaking criminal underground
Share
Notification Show More
Aa
Aa
10alert.com10alert.com
  • Threats
  • Fix
  • How To
  • News
  • Glossary
  • My Bookmarks
  • Threats
    • WordPress ThreatsDanger
  • Fix
  • How To
  • News
  • Glossary
  • My Bookmarks
Follow US
Threats

2016 Stat: 75% of ransomware comes from Russian-speaking criminal underground

Tom Grant
Last updated: 13 October
Tom Grant 7 years ago
Share
4 Min Read

The annual RSA conference will often overwhelm the average attendee. Between the great talks, the exhibition hall, the parties, and the city of San Francisco itself, there is a whole lot to take in.

It typically takes some time for the talks to really pick up and build up steam to drop a fact that makes you say…wow or damn. However, this year, it took me all of six hours from landing in the city from frigid Boston.

75% of ransomware comes from Russian-speaking criminal underground

While sitting in the RSAC 2017 Ransomware Summit, I was floored when I heard Anton Ivanov, a senior malware analyst at Kaspersky Lab, drop the following tidbit.

Out of the 62 crypto ransomware families discovered by the company’s researchers in the past year, 47 of them were developed by Russian-speaking cybercriminals — that’s a whopping 75%. What makes that figure even more staggering is that these ransomware families according to Kaspersky Lab telemetry attacked more than 1.4 million people around the globe in 2016.

We released decryption tool for #CryptXXX (“.crypt”, “.cryp1”, “.crypz”). In most cases full decryption is possible! pic.twitter.com/qAlWUlDHVE

— Anton Ivanov (@antonivanovm) December 20, 2016

Over the course of his talk, Anton delved into the research that the team conducted, breaking down the aspects of criminal involvement with ransomware (outside of the whole ransomware-being-a-crime thing).

  • Creation and updating of ransomware families.
  • Affiliate programs to distribute ransomware.
  • Participation in affiliate programs as a partner.

The structure of a professional ransomware group contains the malware writer, affiliate program owners, partners of the program, and the manager who connects them all into one invisible enterprise

The structure of a professional ransomware group contains the malware writer, affiliate program owners, partners of the program, and the manager who connects them all into one invisible enterprise

What really stood out to me on this was, if we know so much about this type of crime, why do we still see it? As Ivanov notes, it really comes down to the money and barriers to entry into this business. If you are interested in a more technical read on this, I suggest hopping over to Securelist, where this research was broken out more thoroughly.

If you think about it, this talk and topic was quite fitting to sit in on given that this city once housed some bad dudes in an isolated prison in the Bay.

Protecting yourself against ransomware

  1. Back up your files religiously. You can do this to the cloud or to an external device. I do both, but remember if you are logged in or the external drive is connected, ransomware can lock them as well.
  2. Install antivirus that monitors for ransomware. Kaspersky Total Security and Kaspersky Internet Security both employ System Watcher, which monitors for the kind of suspicious activity that is often associated with a ransomware attack.
  3. Don’t open attachments from unknown senders. Be selective about who you trust in terms of opening documents and clicking links that came via e-mail.

If you are infected with ransomware and have not backed up your files, please do not pay the ransom. Instead visit No More Ransom, our collaborative project with law enforcement agencies and even some competitors to help eradicate ransomware.


Source: kaspersky.com

Translate this article

TAGGED: Malware, RC4, RTF, Security, Threats
Tom Grant October 13, 2022 April 1, 2016
Share this Article
Facebook Twitter Reddit Telegram Email Copy Link Print

STAY CONECTED

24.8k Followers Like
253.9k Followers Follow
33.7k Subscribers Subscribe
124.8k Members Follow

LAST 10 ALERT

Safeguards against firmware signed with stolen MSI keys
Threats 2 days ago
WPDeveloper Addresses Privilege Escalation Vulnerability in ReviewX WordPress Plugin
WPDeveloper Addresses Privilege Escalation Vulnerability in ReviewX WordPress Plugin
Wordpress Threats 2 days ago
How to create virtual drive (VHD, VHDX, Dev Drive) on Windows 11
News 3 days ago
How to enable Taskbar End Task option to close apps on Windows 11
News 3 days ago
How to check USB4 devices specs from Settings on Windows 11
News 3 days ago

Recent Posts

  • Safeguards against firmware signed with stolen MSI keys
  • WPDeveloper Addresses Privilege Escalation Vulnerability in ReviewX WordPress Plugin
  • How to create virtual drive (VHD, VHDX, Dev Drive) on Windows 11
  • How to enable Taskbar End Task option to close apps on Windows 11
  • How to check USB4 devices specs from Settings on Windows 11

You Might Also Like

Threats

Safeguards against firmware signed with stolen MSI keys

2 days ago
WPDeveloper Addresses Privilege Escalation Vulnerability in ReviewX WordPress Plugin
Wordpress Threats

WPDeveloper Addresses Privilege Escalation Vulnerability in ReviewX WordPress Plugin

2 days ago
News

How to create virtual drive (VHD, VHDX, Dev Drive) on Windows 11

3 days ago
How To

What is two-factor authentication | Kaspersky official blog

3 days ago
Show More

Related stories

How to Use Cloudflare to Secure Your WordPress Site
How To Starting Chrome from the command line
How to fix error 0x80070057 in Chrome?
Windows 10 How To Disable Slide to Shutdown
Windows search not working (FIX)
How to watch movies and TV series for free on Kinopoisk?
Previous Next

10 New Stories

What is two-factor authentication | Kaspersky official blog
Acer refreshes Windows 11 PCs for work and play: Swift Edge 16 and Predator Triton 16
NVIDIA GeForce RTX 4080 New Mercury Editions of Razer Blade 16 and Blade 18 now available
How Oxy uses hooks for maximum extensibility
The personal threat landscape: securing yourself smartly
Wordfence Intelligence Weekly WordPress Vulnerability Report (May 15, 2023 to May 21, 2023)
Previous Next
Hot News
Safeguards against firmware signed with stolen MSI keys
WPDeveloper Addresses Privilege Escalation Vulnerability in ReviewX WordPress Plugin
How to create virtual drive (VHD, VHDX, Dev Drive) on Windows 11
How to enable Taskbar End Task option to close apps on Windows 11
How to check USB4 devices specs from Settings on Windows 11
10alert.com10alert.com
Follow US

© 10 Alert Network. All Rights Reserved.

  • Privacy Policy
  • Contact
  • Customize Interests
  • My Bookmarks
  • Glossary
Go to mobile version
adbanner
AdBlock Detected
Our site is an advertising supported site. Please whitelist to support our site.
Okay, I'll Whitelist
Welcome Back!

Sign in to your account

Lost your password?