Woburn, MA – November 12, 2018 –Kaspersky Lab is releasing its Q3 IT Threat Evolution Report, which revealed that a year and a half after its epidemic, WannaCry ransomware tops the list of the most widespread cryptor families. The ransomware attacked 74,621 unique users worldwide during the last quarter, accounting for 29 percent of all users targeted by cryptors in Q3 2018. This percentage has risen over the last year, demonstrating more than two thirds growth since Q3 2017, when WannaCry accounted for 17 percent of cryptor attacks.
The series of WannaCry cyberattacks that occurred in May 2017 is considered to be one of the biggest ransomware epidemics in history. Although two months prior to the start of the attacks, Microsoft had released a patch for the Windows operating system to close the vulnerability exploited by EternalBlue, WannaCry still affected hundreds of thousands devices around the globe. As cryptors do, WannaCry encrypted files on victims’ computers, making it impossible to operate the infected device. Threat actors then demanded ransom in exchange for decryption keys, created to decipher the files and make the device usable once again.
The consequences of the WannaCry epidemic were devastating; as the victims were mainly organizations with networked systems, a number of businesses, factories and hospitals were paralyzed. Although this case demonstrated the dangers cryptors pose, and most PCs around the world have been updated to resist the EternalBlue exploit, statistics show that criminals are still trying to exploit computers that weren’t patched – and there are still plenty of them around the globe.
Overall, Kaspersky Lab security solutions protected 259,867 unique users from cryptor attacks during the third quarter of 2018. This is a 39 percent increase compared to Q2 2018, when the figure was 158,921. The growth in Q3 was rapid yet steady, with the number of attacked users increasing month over month.
“The rising share of WannaCry attacks is another reminder that epidemics don’t end as fast as they start; there are always long-running consequences,” said Fedor Sinitsyn, security researcher at Kaspersky Lab. “In the case of cryptors, attacks can be so severe that it is necessary to take preventive measures and patch the device, rather than deal with encrypted files later.”
Other online threat statistics from the Q3 2018 report include:
To reduce the risk of infection by WannaCry and other cryptors, users are advised to:
Read the full version of the Kaspersky Lab’s IT threat evolution report on Securelist.com.
About Kaspersky Lab
Kaspersky Lab is a global cybersecurity company, which has been operating in the market for over 20 years. Kaspersky Lab’s deep threat intelligence and security expertise is constantly transforming into next generation security solutions and services to protect businesses, critical infrastructure, governments and consumers around the globe. The company’s comprehensive security portfolio includes leading endpoint protection and a number of specialized security solutions and services to fight sophisticated and evolving digital threats. Over 400 million users are protected by Kaspersky Lab technologies and we help 270,000 corporate clients protect what matters most to them. Learn more at www.kaspersky.com.
Media Contact
Meghan Rimol
781.503.2671
meghan.rimol@kaspersky.com