Skip to ContentSkip to Footer
News

UK ransomware attacks surged 80% in latest quarter

Check Point's findings show that hackers continue to take advantage of mass remote working

by: Sabina Weston
7 Oct 2020
Visual representation of ransomware by showing encrypted files on a display

Shutterstock

Ransomware attacks in the UK increased by 80% in the last three months as hackers continue to take advantage of mass remote working, according to security researchers at Check Point.

The findings show that the daily global average of ransomware attacks jumped 50% in last 3 months, compared to first half of 2020.

Countries with the most notable increase in ransomware attacks were the US (98.1%), where the most often targeted sector was healthcare, as well as Germany (145%), Spain (160%), and Sri Lanka, which saw attacks skyrocketed by 436%.

The most often used ransomware strains in the last three months were found to be Maze and Ryuk. According to Check Point, the latter now attacks an average of 20 organisations a week. 

Check Point’s head of Threat Intelligence Lotem Finkelsteen said that ransomware is “breaking records in 2020”. 

“The increase in ransomware attacks began with the advent of the coronavirus pandemic, as organizations scrambled to enact remote workforces, leaving significant gaps in their IT systems.

"However, the last three months alone have shown alarming surges in ransomware attacks, and I suspect the ransomware threat to get far more worse as we approach the new year,” he said, urging organisations “to be extra vigilant”.

According to Finkelsteen, the most significant drivers behind the recent surge in attacks are the victims’ willingness to pay, as well as the rise in increasingly sophisticated attacks, such as Double Extortion and the Emotet malware, which recently made a comeback after five month of absence.

Last week, the US Treasury warned that companies that agree to hand over cash to hackers to free their systems from ransomware may face prosecution or penalties.

Related Resource

Securing remote work

Safeguarding business continuity

Download now

The advisory cited cyber attacks that were linked to hacking groups from North Korea and Russia, which are both nations sanctioned by the US. The US government often imposes economic and trade sanctions on countries that it deems sponsors terrorism or that violate human rights.

In order to ensure an organisations safety, Check Point’s security researchers recommended taking additional precautions, such as educating employees on how to identify and avoid potential ransomware attacks, ensuring that all systems have the latest patches applied, and maintaining regular backups of data.

Featured Resources

How to choose an AI vendor

Five key things to look for in an AI vendor

Download now

The UK 2020 Databerg report

Cloud adoption trends in the UK and recommendations for cloud migration

Download now

2021 state of email security report: Ransomware on the rise

Securing the enterprise in the COVID world

Download now

The impact of AWS in the UK

How AWS is powering Britain's fastest-growing companies

Download now

Recommended

Ransomware criminals look to other hackers to provide them with network access
ransomware

Ransomware criminals look to other hackers to provide them with network access

17 Jun 2021
Four in five ransomware victims suffer repeat attacks
ransomware

Four in five ransomware victims suffer repeat attacks

16 Jun 2021
FBI still frowns on ransomware payments
ransomware

FBI still frowns on ransomware payments

11 Jun 2021
ProtectedBy.AI’s CodeLock blocks malware at source code level
software as a service (SaaS)

ProtectedBy.AI’s CodeLock blocks malware at source code level

9 Jun 2021

Most Popular

How to find RAM speed, size and type
Laptops

How to find RAM speed, size and type

16 Jun 2021
Ten-year-old iOS 4 recreated as an iPhone app
iOS

Ten-year-old iOS 4 recreated as an iPhone app

10 Jun 2021
What is HTTP error 400 and how do you fix it?
Network & Internet

What is HTTP error 400 and how do you fix it?

16 Jun 2021
Skip to HeaderSkip to Content