New type of ransomware that utilises agentic AI for faster, more effective attacks anticipated to become a threat
KnowBe4, the world-renowned cybersecurity platform that comprehensively addresses human risk management, today announced a prediction that agentic AI ransomware will become a new threat in the near future, recognised on International Anti-Ransomware Day.
Ransomware demands and payments escalated in 2024, with average payments reaching $2.73 million. International Anti-Ransomware Day serves as a platform to raise awareness globally about the dangers of ransomware and the best practices for mitigating it.
AI agentic ransomware is a collection of AI bots that perform all the steps necessary to conduct a successful ransomware attack, only faster and better. The AI-enabled agentic ransomware will gain initial access, analyse the environment, determine how to maximise malicious hacker profits, and implement the attacks. And it will not be just one attack, but a series of escalating attacks to maximise a malicious hacker’s profit.
“We have already seen how AI has been used in hacking for a few years now and the near-term future is best predicted by past behaviour,” said Roger Grimes, data-driven defence evangelist, KnowBe4. “History shows that the bad actors follow about six to 12 months behind what the good actors invent and discover. It takes that long for the bad actors to learn what the good actors developed and then figure out not only how to use it maliciously, but place it into existing hacker tools and kits so a broad range of hackers can use them. Now is the time to start using agentic AI in cybersecurity defences – before it becomes a true threat.”
KnowBe4 has multiple resources, including tips to help organisations fight against ransomware and a Ransomware Hostage Rescue Manual.
Commenting on Anti Ransomware Day, Erich Kron, Security Awareness Advocate, KnowBe4 said:
“Ransomware continues to be one of the most disruptive threats facing organisations today, and International Ransomware Day is a critical reminder that no business, large or small, is immune. Attackers are not just locking up data anymore, they are stealing it, leaking it, and extorting victims in more sophisticated ways than ever before.
But the root of the problem often is not with technology, but with people. When someone clicks on a malicious link, falls for a phishing email, or uses weak passwords, it can open the door to chaos, meaning human risk management is not optional, it is essential. In fact, KnowBe4 reports that 68% of all data breaches are caused by human error.
By building a strong security culture from the inside out, through real-world simulated phishing attacks and engaging security awareness training, organisations can empower people to become a critical part of their defence strategy.
This day is a chance to pause and evaluate, asking yourselves, are your employees trained to spot social engineering tactics? Are you testing your defences regularly with available security methods?
Prevention is far more cost-effective than paying a ransom or repairing brand damage.
Ransomware is not going anywhere. But with the right people, processes and technology, your team can be the last line of defence and more often than not, the best one.”
About KnowBe4
KnowBe4 empowers workforces to make smarter security decisions every day. Trusted by over 70,000 organisations worldwide, KnowBe4 helps to strengthen security culture and manage human risk. KnowBe4 offers a comprehensive AI-driven ‘best-of-suite’ platform for Human Risk Management, creating an adaptive defence layer that fortifies user behaviour against the latest cybersecurity threats. The HRM+ platform includes modules for awareness & compliance training, cloud email security, real-time coaching, crowdsourced anti-phishing, AI Defence Agents, and more. As the only global security platform of its kind, KnowBe4 utilises personalised and relevant cybersecurity protection content, tools and techniques to mobilise workforces to transform from the largest attack surface to an organisation’s biggest asset.
