
Offer för Ransomware-attacker som vägrar att betala: Kedjeanalys
- Chainalysis uppgav att ransomware-angripare pressade ut minst $456,8 miljoner från offer 2022, en minskning från $765,6 miljoner 2021.
- “Much of the decline is due to victim organizations increasingly refusing to pay ransomware attackers,” said the blockchain firm.
- De flesta av pengarna från attackerna skickades till stora centraliserade börser eftersom användningen av DEX har minskat kraftigt.
- Livslängden för en stam sjönk också med den genomsnittliga stammen som förblev aktiv i 70 dagar 2022, ner från 153 år 2021 och 265 år 2020.
2022 was one of the most active years for hackers and fraudsters in the crypto industry, including ransomware attackers. These attackers use a type of software, which is actually malware from cryptovirology, that completely cuts off a user’s access to their personal data or threatens to reveal that data publicly if a ransom is not paid. Interestingly, the revenue of such attackers now continues to decline as victims have started refusing to pay them.
Enligt en ny blogginlägg from blockchain data firm Chainalysis, “Ransomware attackers extorted at least $456.8 million from victims in 2022, down from $765.6 million the year before.” This positive shift in the trend confirms the fact that victims are no longer afraid of such attackers after regulators have become increasingly active in the crypto industry, cracking down on all the developers who use their skills for bad purposes.
Chainalysis also stated that the values it has found are not true and that there are still addresses of ransomware attackers that are yet to be identified. However, the blockchain data firm noted that the money made from such attacks is significantly down. As per the firm’s belief, “much of the decline is due to victim organizations increasingly refusing to pay ransomware attackers.”
On the other hand, Chainalysis has reported a substantial growth in the number of ransomware strains in 2022 and also cited a report by cybersecurity firm Fortinet, which claimed that more than 10,000 strains of ransomware were active in the first half of 2022. Interestingly, Chainalysis said that “on-chain data confirms that the number of active strains has grown significantly in recent years, but the vast majority of ransomware revenue goes to a small group of strains at any given time.”
Dessutom fortsatte livslängden för ransomware också att minska under 2022, och den genomsnittliga stammen förblev aktiv i över 70 dagar, vilket är mer än 50% ned från 153 dagar 2021 och 265 dagar 2020. Intressant nog bekräftade blockchain-företaget också att fonderna som görs via dessa aktiviteter överförs oftast till större centraliserade kryptobörser.
“The share of ransomware funds going to mainstream exchanges grew from 39.3% in 2021 to 48.3% in 2022, while the share going to high-risk exchanges fell from 10.9% to 6.7%. Usage of illicit services such as darknet markets for ransomware money laundering also decreased, while mixer usage increased from 11.6% to 15.0%,” said Chainalysis.
Chainalysis uppgav också att för det mesta fungerar dessa skadliga program som en ransomware-as-a-service (RaaS)-modell, dvs utvecklaren låter angriparna använda sin programvara för en liten minskning av intäkterna. Dessutom, som tidigare rapporterats av Bitnation, det amerikanska multinationella teknikföretaget Microsoft har upptäckt en attack som heter DEV-013 som är specifikt inriktad på kryptostartuper.