NCC Group Monthly Threat Pulse – January 2023
January’s Threat Pulse sees a decrease in ransomware attacks – 38%, compared to December but still a high number recorded for January, the highest in 3 years.
NCC Group Monthly Threat Pulse - December 2022
December’s Threat Pulse sees a small increase in ransomware attacks – 2%, compared to November but still a high number recorded for the traditionally quieter end of year period.
NCC Group Monthly Threat Pulse – November 2022
November’s Threat Pulse sees ransomware attacks again on the rise by 41%, along with Royal and Cuba threat actors resurfacing to knock Lockbit off the top of the most active threat groups.
DDoS attacks on the rise - an anomaly or a resurgence?
Distributed Denial of Service (DDoS) attacks have been the subject of much discussion across the security community with the number of attacks on the rise. We take a look at what this could mean for organisations and whether a resurgence is on the cards.
NCC Group Monthly Threat Pulse – October 2022
Analysis from NCC Group’s NCC Group’s Global Threat Intelligence team has revealed a decrease in ransomware attacks in October, but a sharp rise in DDoS attacks with the highest number of incidents observed this year.
NCC Group Monthly Threat Pulse – September 2022
September’s analysis from NCC Group’s Global Threat Intelligence team shows an increase in ransomware attacks after a rather turbulent summer period in the threat group scene, with Conti disbanding, Lockbit rebranding, and new actors emerging.
Fake antivirus, Sharkbot circles back onto Google Play store
Back in February 2022, our Fox-IT threat intelligence team discovered a new generation banking Trojan, posing as a fake Android antivirus cleaner, known as SharkBotDropper, in the Google Play store. Last month, the team detected a new version of this malware dropper active in two apps on the Google Play store, with over 60,000 installations between them.
NCC Group Monthly Threat Pulse – August 2022
Analysis from NCC Group’s Global Threat Intelligence team suggests a proliferation of new and evolving threat actors in August with the emergence of new threat actor, IceFire and a surge in activity for most active attacker Lockbit 3.0.
NCC Group Monthly Threat Pulse - July 2022
The ransomware threat scene continues to evolve following the disbanding of Conti, as ransomware attacks rose from 135 in June to 198 in July, representing a 47% increase, as reported by NCC Group’s Global Threat Intelligence team.
NCC Group Monthly Threat Pulse - June 2022
Ransomware threat scene continues to evolve with newly established Lockbit 3.0 ramping up activity and Conti, as we knew it, all but disappearing completely
NCC Group Monthly Threat Pulse – May 2022
The number of ransomware attack victims decreased in May, according to NCC Group’s strategic threat intelligence team. In total, it observed 236 attacks in the month, an 18% decrease on the 289 attacks observed in April.