According to recent studies on cyber trends, ransomware attacks will continue to evolve and pave the way for two- stage extortion attacks: attacking victims with ransomware attacks to extract files and then extorting a ransom by threating to disclose sensitive data.
While the motives of the malicious actors are predictable, the past couple of years have seen more sensitive data being leaked online especially for business who refused to pay the ransom. The worst affected industries have been healthcare, financial and professional services, hospitality and utilities. While SMBs (with minimal resources) and large organisations with poor cyber security posture are the most vulnerable to ransomware attacks.
Apart from financial repercussions and the legal costs, a ransomware attack can cause serious harm to a company’s brand and reputation. One such example is Sodinokibi Ransomware, a critical flaw within Oracle WebLogic. Building upon Maze’s example (a malicious gang which published sensitive data of one of the leading security and facility service providers in the US), REvil (the gang behind Sodinokibi ransomware) released stolen data from one of their victims as the ransom was not paid on time.
Access our white paper on Sodinkibi vulnerability here: Privasec-Fact-Sheet_Citrix_RCE