In a recent report released by cybersecurity consulting firm NCC Group, it has been revealed that 2024 witnessed a record number of ransomware attacks, totaling a staggering 5263 incidents. This marks the highest volume of attacks since 2021, highlighting the escalating threat landscape faced by organizations globally.
The year 2024 was characterized by a tumultuous cyber landscape, with high-impact attacks and sophisticated nation-state espionage campaigns dominating the scene. Despite efforts to combat cyber threats, the number of attacks continued to rise, raising concerns about the resilience of businesses and institutions in the face of evolving cyber threats.
One of the key findings of the report was the prevalence of the threat group LockBit, which emerged as the top actor of 2024, accounting for 10% of all attacks. However, the group’s overall activity declined compared to the previous year, following its takedown earlier in 2024. RansomHub closely trailed behind LockBit, responsible for 501 attacks and emerging as the most dominant threat actor in the latter half of the year.
The report also highlighted the uptick in ransomware attacks across most regions, with North America experiencing over half of all attacks in 2024. Other regions such as Asia, South America, and Oceania also witnessed a rise in attacks, attributed to global geopolitical tensions and lucrative payouts for cybercriminals. These trends underscore the need for enhanced cybersecurity measures to mitigate the risk posed by ransomware attacks.
Industrials emerged as a top target for ransomware attacks in 2024, accounting for 27% of all incidents. This sector experienced a 15% increase in attacks compared to 2023, resulting in mass disruption to critical infrastructure and services, leading to material downtime.
Despite efforts by the international community to address cyber threats, threat actors continued to evade law enforcement crackdowns. Operations Cronos, Magnus, Destabilise, and Serengeti were notable examples of coordinated law enforcement actions against cybercriminal networks. However, the reemergence of threat groups like LockBit within days of takedown underscores the need for greater collaboration and proactive measures to combat cyber threats effectively.
Matt Hull, global head of Threat Intelligence at NCC Group, highlighted the unprecedented challenges faced by businesses and institutions in 2024. He emphasized the need for enhanced vigilance and proactive measures to address evolving cyber threats, including third-party compromises, cloud vulnerabilities, and insecure APIs. As technology continues to advance, the stakes are higher than ever, requiring a collective effort to secure a more resilient digital future.