top of page

Report: Ransomware Decreased 5% in 2022

NCC Group's 2022 Annual Threat Monitor Report showed a 5% decrease in ransomware attacks between January and December 2022, with a total of 2,531 attacks.

However, there was a notable surge in ransomware attacks between February and April, which coincided with the start of the Russia-Ukraine conflict and an increase in activity from threat actor LockBit. Ransomware operators are effective innovators who use various techniques to extort money from their victims, including data leaks and DDoS attacks.

LockBit was the most active threat actor in 2022, responsible for 33% of all monitored ransomware attacks, while BlackCat accounted for 8% of attacks. The most targeted sectors in 2022 were Industrials (32%), followed by Consumer Cyclicals (20%) and Technology (10%). North America and Europe suffered the most ransomware attacks, with North America seeing a 24% decrease in attacks compared to 2021. The use of DDoS attacks and BEC attacks has increased, with DDoS events numbering 230,519 in 2022 and BEC attacks representing 33% of all incidents observed by NCC Group's Cyber Incident Response Team. The report was compiled by NCC Group's Global Threat Intelligence team and details the events of 2022 and their impact on the cyber threat landscape.



bottom of page