Qilin was the dominant ransomware group in April, with the gang’s sharp increase in attacks from March to April potentially due to the transfer of RansomHub affiliates after Qilin’s administrator touted updated ransomware and DDoS extortion capabilities following the RansomHub outage, a report from Comparitech revealed. The Akira, Play, Lynx, and NightSpire ransomware operations were the next most prolific groups last month. Most ransomware attacks last month were conducted against businesses, followed by government organizations, healthcare entities, and education institutions, with intrusions by Scattered Spider, SafePay, and Rhysida against Marks & Spencer, German recycling manufacturer Eu-Rec GmbH, and the Oregon Department of Environmental Quality, respectively, being the most significant.
Get essential knowledge and practical strategies to protect your organization from ransomware attacks.