Seen here, Comparitech’s ransomware map
Human-powered gangs remain the most dangerous and insidious threat on the ransomware front, but a newly introduced map feature serves as a reminder that there is still a wide array of automated campaigns designed to serve up ransomware as well.
Updated on a daily basis, the map, from Comparitech, visualizes attempted ransomware attacks around the world over the past three weeks, showing the geolocations of publicly accessible, compromised IPs running databases that have been served a ransomware file. The data isn’t particularly actionable, but it does send a strong message about the global scope of the ransomware problem and certain overall trends.
For instance, over four months of aggregated data, the average bitcoin demanded from these automated attacks was 0.02, or $8,025.18 at the rate of exchange as of June 14, and the average deadline was 48 hours.
“The data is sourced through random port scanning and automated investigation of open ports using API-streamed data coming from search engines such as Shodan, BinaryEdge, Censys and Zoomeye,” said head of Comparitech’s cybersecurity research team Bob Diachenko. “We look at the ..
Support the originator by clicking the read the rest link below.
