There are now over 250 different ransomware families currently operational worldwide

Ransomware
(Image credit: Shutterstock)

In its latest monthly threat debrief, security vendor Bitdefender has shared that its researchers have now identified 250 different ransomware families, some more notorious and active than others.

The report is based on the analysis of 19.8 million malware detections during the month of August 2021.

“To give you some idea of the scale, our Labs operations discover 400+ new threats each minute and validate 30 billion threat queries daily,” shares Bitdefender.

TechRadar needs yo...

We're looking at how our readers use VPNs with streaming sites like Netflix so we can improve our content and offer better advice. This survey won't take more than 60 seconds of your time, and we'd hugely appreciate if you'd share your experiences with us.

>> <a href="https://project.tolunastart.com/tqsruntime/main?surveyData=LFFFsT0HpgsyUe0tTFumBJohXK8Sedt0ARpsCF4DRGR+oCoVbvd+2+d8+UNIIx4L" data-link-merchant="project.tolunastart.com"" target="_blank">Click here to start the survey in a new window <<

Compiled amidst the hiatus of REvil, the report notes that the top three ransomware families in August, namely WannaCryptor, Stop/DJVU, and Phobo, account for over 60% of all detections. 

Global threat

Bitdefender tracked ransomware incidents from all over the world with detections in August from 174 countries.

The United States emerged as the favorite target accounting for 30% of all attacks, with India in the runners-up spot attracting 17% of all campaigns, closely followed by Brazil at 15%.

Of all the detections, almost 40% of the campaigns have been assigned to specific industries. Over half of these campaigns (51%) have targeted the telecommunications services sector. 

Interestingly, while campaigns against utilities, such as the one against Colonial Pipeline indirectly impact a large number of people, in the grander scheme of things they only make up a mere 1% of all the attacks.

“Adversaries sometimes take a break, but they often re-emerge with an improved toolkit utilizing a new name. In the case of REvil, we expect to see more targeted attacks,” the researchers conclude.

Mayank Sharma

With almost two decades of writing and reporting on Linux, Mayank Sharma would like everyone to think he’s TechRadar Pro’s expert on the topic. Of course, he’s just as interested in other computing topics, particularly cybersecurity, cloud, containers, and coding.