Cybersecurity experts at BiZone have recorded an increase in demands from criminals using ransomware. In 2024, the average ransom for restoring access to data was $150,000 (14 million rubles), which is 50% higher than last year. At the same time, companies that agree to the hackers' terms pay an average of about 10 million rubles.
Ransomware encrypts files on infected devices, blocking access to critical systems. For decryption, attackers demand payment in cryptocurrency, which makes it difficult to track transactions. One common tool is the LockBit virus, which automatically scans networks for vulnerabilities, spreads between devices, and encrypts data. Its victims are often large corporations and government organizations.
In 2024, ransomware attacks accounted for 40% of all cyberattacks. Government agencies (15% of attacks), the financial sector, logistics, and IT companies were the most vulnerable. A ransom demand of 300 million rubles was recorded, one of the highest for the year. At the same time, the total number of attempted hacks decreased by 41%, but successful attacks increased by 63%.
Hackers are increasingly attacking infrastructure facilities, where work stoppages lead to multimillion-dollar losses. The lack of guarantees of data recovery after payment exacerbates the risks.
Experts emphasize that even with protective measures, no organization is immune to attacks. However, a prepared response and transparent action protocols minimize damage and reduce the time to restore operations.
Read more on the topic:
Major Russian companies talk about the main cyber threats
Hackers in Russia are targeting the Internet of Things
Parcels are waiting for the addressee: SDEK has not eliminated the cause of the global failure
