Ransomware attacks rose to record highs in 2023, with dramatic increases in severity and frequency of incidents and notable targeting of the healthcare sector. Cybersecurity firms warned of new tactics, including dual ransomware attacks, designed to exert more pressure on victims to pay. The threat landscape shifted from data encryption to pure data extortion. However, law enforcement made some inroads, with the FBI seizing websites linked to the Alphv/BlackCat ransomware gang. Major victims in 2023 included Lehigh Valley Health Network, U.S. Marshals Service, Dish Network, Western Digital, the City of Dallas, Prospect Medical Holdings, MGM Resorts, Boeing, Henry Schein, and Ardent Health Services.
GuidePoint warns of Python backdoor used in ransomware
GuidePoint Security identified a threat actor using a Python-based backdoor to persistently access breached endpoints and release RansomHub encryptors across compromised networks. The backdoor was