According to NCC Group, an international cyber and software resilience business, March 2023 broke the record for the number of ransomware attacks, with 459 attacks measured. This is a 62% jump from numbers reported in March 2022. Even more concerning is that this is a 91% increase from February 2023.
The Common Vulnerability Exploit CVV-2023-0669 was the main culprit for the skyrocketing number of attacks. This exploit used a common business file transfer service called GoAnywhere MFT. Ransomware-as-a-Service (RaaS) provider Clop discovered the exploit and, over the next ten days, stole from 130 companies.
NCC Group, which measures the number of attacks from different threat actor groups, has placed Clop on top. They also note that North America "was the target of almost half of March's activity, with 221 victims."
Who was targeted the most in March? The Industrial sector.