Hackers nabbed US$1.3bil in ransom over two years, a new report says


The US, the UK and Australia issued a joint alert Wednesday warning of an increased global threat from ransomware. Hackers have adopted advanced techniques, such as professionalised business models and sharing data about potential victims, officials said. — AFP Relaxnews

Criminals netted US$1.3bil (RM5.43bil) in ransom payments from hacking victims in the past two years, reflecting a massive surge in cybercrime that has prompted a global effort to stop it, according to a new report from Chainalysis Inc.

The cryptocurrency-tracking firm said in an analysis published Thursday it observed a huge increase in ransom payments: US$602mil (RM2.51bil) in payments in 2021 and US$692mil (RM2.89bil) in 2020. The 2021 figure is expected to increase and surpass 2020 as additional information becomes available, according to the report.

By comparison, Chainalysis detected US$152mil (RM635.89mil) in payments in 2019 and US$39mil (RM163.15mil) in 2018.

Hacking victims often don’t disclose that they have experienced a breach or that they have paid a ransom in cryptocurrency to unlock their systems. The secrecy is one reason, experts say, that criminal groups often based in Russia and Eastern Europe continue to target businesses in the US.

The average payment totaled more than US$118,000 (RM493,653) in 2021, an increase from US$88,000 (RM368,148) in 2020 and US$25,000 (RM104,587) in 2019, the report said.

The US, the UK and Australia issued a joint alert Wednesday warning of an increased global threat from ransomware. Hackers have adopted advanced techniques, such as professionalised business models and sharing data about potential victims, officials said.

The Biden administration has rolled out a series of initiatives to bolster cyber defences, both in government and in the private sector, after a series of devastating hacks last year, including ransomware attacks against the fuel transporter Colonial Pipeline Co and the IT services firm Kaseya Ltd.

In October, the White House hosted representatives from 30 countries in an attempt to find ways to slow the number of breaches. Law enforcement agencies, meanwhile, have sought to deter hackers by arresting alleged ransomware operators throughout Europe.

Chainalysis researchers tracked payments in recent years in part by analysing cryptocurrency wallets associated with suspected ransomware groups, including the gangs known as Conti, DarkSide and Evil Corp.

The Conti ransomware strain generated the most revenue in 2021, researchers said. Believed to be based in Russia, Conti reaped at least US$180mil (RM753.03mil) from victims, according to the report. Conti is one of numerous groups that uses the ransomware-as-a-service business model, where affiliates can purchase ransomware, use it to extort money and provide Conti with a share of the ransom.

The FBI and Cybersecurity and Infrastructure Security Agency issued an alert about Conti in September, noting more than 400 attacks, including intrusions that had impacted law enforcement and medical agencies.

DarkSide, the group behind the Colonial Pipeline attack, extorted the second-largest amount of money from victims last year, according to Chainalysis’ report. Colonial Pipeline said it paid US$4.4mil (RM18.40mil) to DarkSide. In June, the Department of Justice announced that it had retrieved US$2.3mil (RM9.62mil) of that amount.

The FBI has previously said that US victims reported US$29.1mil (RM121.73mil) in ransomware losses in 2,474 complaints in 2020. – Bloomberg

Article type: free
User access status:
Subscribe now to our Premium Plan for an ad-free and unlimited reading experience!
   

Next In Tech News

TikTok's chief to testify before Congress in March - WSJ
JD.com to shut Indonesia, Thailand shopping sites in focus shift
Nigerian artist uses AI to re-imagine life for the elderly
Food blogger in China who cooked and ate great white shark is fined US$18,500
Can the UK Online Safety Bill take on misogyny?
Opinion: Tech industry must accept greater social responsibility
Indonesian unit of JD.com to discontinue all services at end of March - JD.ID website
Opinion: ChatGPT will change the future of education
Maybank2u and MAE app add ‘kill switch’ feature to combat online scams
Man with history of torturing women is using dating apps to lure new victims in Oregon,�US police say

Others Also Read