By The Numbers

Rise in Active RaaS Groups Parallel Growing Victim Counts: Ransomware in 2H 2023

March 27, 2024

We cover the key trends that defined the ransomware threat landscape in the second half of 2023. Data from RaaS and extortion groups’ leak sites, open-source intelligence (OSINT) research, and the Trend Micro telemetry shows that LockBit, BlackCat, and Clop continued to rank among the active RaaS and extortion groups with the highest victim counts during this period.

By The Numbers

LockBit, BlackCat, and Clop Prevail as Top RAAS Groups: Ransomware in 1H 2023
September 21, 2023
We delve into three of the most active ransomware families that dominated the first half of 2023: LockBit, Clop, and BlackCat. This report features data from ransomware-as-a-service (RaaS) and extortion groups’ leak sites, Trend Micro’s open-source intelligence (OSINT) research, and the Trend Micro™ Smart Protection Network™, collected from Jan. 1 to June 30, 2023.
Read more
LockBit and Black Basta Are the Most Active RaaS Groups as Victim Count Rises: Ransomware in Q2 and Q3 2022
November 22, 2022
We discuss key trends in the ransomware threat landscape from April to September 2022. Data from RaaS and extortion groups’ leak sites, open-source intelligence (OSINT) research, and the Trend Micro™ Smart Protection Network™ points to LockBit, BlackCat, Black Basta, and Karakurt as the most active groups with the most victims.
Read more
LockBit, Conti, and BlackCat Lead Pack Amid Rise in Active RaaS and Extortion Groups: Ransomware in Q1 2022
May 23, 2022
This report delves into the ransomware threat landscape of the first quarter of 2022, with a focus on the three most successful ransomware families and the types of industries and organizations that were affected by their attacks.
Read more
Conti and LockBit Make Waves with High-Profile Attacks: Ransomware in Q4 2021
January 28, 2022
This latest report features the ransomware threat landscape in the fourth quarter of 2021, and includes notable ransomware families and the types of industries and enterprises that were targeted. This report also highlights two modern ransomware families that worked overtime during this period, Conti and LockBit.
Read more
Examining Erratic Modern Ransomware Activities: Ransomware in Q3 2021
November 23, 2021
This latest report examines the landscape of ransomware families, both legacy and more modern threats, in the third quarter of 2021. Our tracking and investigation covered the families themselves and the types of industries and enterprises that were targeted.
Read more

By The Numbers

Rise in Active RaaS Groups Parallel Growing Victim Counts: Ransomware in 2H 2023

LockBit, BlackCat, and Clop Prevail as Top RAAS Groups: Ransomware in 1H 2023

LockBit and Black Basta Are the Most Active RaaS Groups as Victim Count Rises: Ransomware in Q2 and Q3 2022

LockBit, Conti, and BlackCat Lead Pack Amid Rise in Active RaaS and Extortion Groups: Ransomware in Q1 2022

Conti and LockBit Make Waves with High-Profile Attacks: Ransomware in Q4 2021

Examining Erratic Modern Ransomware Activities: Ransomware in Q3 2021

Resources

Support

About Trend

Country Headquarters

By The Numbers

Rise in Active RaaS Groups Parallel Growing Victim Counts: Ransomware in 2H 2023

LockBit, BlackCat, and Clop Prevail as Top RAAS Groups: Ransomware in 1H 2023

LockBit and Black Basta Are the Most Active RaaS Groups as Victim Count Rises: Ransomware in Q2 and Q3 2022

LockBit, Conti, and BlackCat Lead Pack Amid Rise in Active RaaS and Extortion Groups: Ransomware in Q1 2022

Conti and LockBit Make Waves with High-Profile Attacks: Ransomware in Q4 2021

Examining Erratic Modern Ransomware Activities: Ransomware in Q3 2021

Resources

Support

About Trend

Country Headquarters

The Americas

Middle East & Africa

Europe

Asia & Pacific