U.S. No. 1 target for ransomware
Author
Publisher
Date Published

A recent analysis has found that the United States suffers more ransomware attacks than any other country.

The United States suffers more ransomware attacks than any other country in the world.

This is according to a recent analysis from cloud platform NordLocker based on data collected from multiple publicly available online blogs where ransomware groups had posted the names of their victims and their demands. This yielded a sample of 5,212 recorded cases worth $4.15 trillion of collective revenue of targeted companies, affecting more than 12 million employees.

This analysis showed that the U.S. accounts for 46% of all reported ransomware attacks. Within the U.S., the states of California, Texas, Florida, and New York have seen the most attacks in terms of sheer number, but when adjusting the attack rate by the number of businesses active in the state, the state most vulnerable to ransomware is Michigan. The states that experienced the fewest such attacks were Missouri and South Dakota.

The U.S. manufacturing sector was the most frequent target for such attacks, followed closely by construction, then transportation/logistics, then IT, then technology, then health care. Finance/insurance came in sixth.

The analysis was also able to track who the biggest culprits are. It was noted that, unlike many criminal organizations, malware syndicates are quite open about their operations, as having a fearsome reputation encourages people to just give them the money versus trying to fight. The two biggest groups by far in terms of the number of attacks are Lock Bit and Conti.

NordLocker encouraged people to take cybersecurity training, pay extra attention to email (especially attachments), introduce better security tools, nurture a culture of support, assess their current security, create a disaster recovery plan, ensure a regular backup process, keep software up to date and, if possible, never pay the attackers.

The report said the No. 2 country for ransomware attacks was Canada, followed by the U.K., France, and Germany.