Ransomware Shifts Tactics as Payouts Drop: Critical Infrastructure in the Crosshairs

Analysis of threats detected in the latter half of 2024, demonstrates that attackers evolve rather than abandon their primary targets and tactics.

A study by researchers at Ontinue describes four major evolutionary trends: malware delivery via browser extensions and malvertising; more advanced phishing and vishing techniques; increasing attacks against IoT and OT devices; and the continuing evolution of ransomware.

Ransomware is noteworthy. Ontinue explains (PDF) that ransom payments decreased: from $1.25 billion in 2023 to $813.5 million in 2024. But while the payments received by criminals went down, the number of reported breaches went up. “This could indicate that ransomware groups are conducting more attacks to compensate for lower ransom success rates,” suggests Ontinue.

The primary motivating factor for ransomware is the money it generates. Apparently, more victims are declining to pay – but it is equally apparent that criminals are not ready to abandon this type of attack ...