Widespread data exfiltration attacks exploiting a zero-day vulnerability in the MOVEit Transfer file transfer app that have already impacted hundreds of organizations may rake in $75 million to $100 million for the Cl0p ransomware operation, with the proceeds expected to come from very few of the victims, as the rate of ransomware victims paying attackers' demands dropped to 34%, which is the lowest on record, reports BleepingComputer.
Significantly higher ransoms have been demanded by Cl0p as a result of the decline in data exfiltration ransomware payments, with the MOVEit compromise expected to be more lucrative than Cl0p's earlier Fortra GoAnywhere attacks, a Coveware report showed.
"MOVEit had at least 10x more direct victims than both [Fortra and Accellion attacks], so CloP was able to focus on just the very largest and most likely to consider paying, even with well over 90% victims not even bothering to engage in a negotiation, let alone paying," said Coveware CEO Bill Siegel.
The report also showed significantly fewer ransomware-as-a-service operations looking to compromise small enterprises.
Vulnerabilities impacting cloud analytics and business intelligence software Qlik Sense have been exploited to facilitate the deployment of CACTUS ransomware in a new campaign, The Hacker News reports.
Staples cyberattack disrupts online orders BleepingComputer reports that outages at American office supply retail chain that disrupted online orders were confirmed to have been caused by a cyberattack.
Cyber Resilience in the Ransomware and Wiper Era New Strategies for CISOs to Protect
The changing face of ransomware, and how to respond
Unveiling the Hidden Threat: Hybrid Attackers Leveraging Identities to Execute Ransomware
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news