"Remote Encryption Attacks Surge: How One Vulnerable Device Can Spell Disaster"

There has been a significant shift to remote encryption among ransomware groups. Mark Loman, vice president of threat research at Sophos, points out that it only takes one vulnerable device to compromise a company's entire network, with remote ransomware. Attackers are aware of this, so they look for that one gap that most companies have. Remote encryption, also known as remote ransomware, occurs when a compromised endpoint is used to encrypt data on other devices on a network. Microsoft revealed in October 2023 that around 60 percent of ransomware attacks now use malicious remote encryption, with unmanaged devices accounting for over 80 percent of all compromises. Akira, ALPHV/BlackCat, BlackMatter, LockBit, and Royal are ransomware families known to support remote encryption. This article continues to discuss the concept and rise of remote encryption.

THN reports "Remote Encryption Attacks Surge: How One Vulnerable Device Can Spell Disaster"

Submitted by grigby1

Submitted by Gregory Rigby on