November 5, 2025
Ransomware, what is that? 5 ransomware trends in 2023
Ransomware, what is that? With a ransomware attack The system is infected with malware and the files are then encrypted. The motive of the attackers is to extort ransom money. But what does the situation look like in 2023? What new trends and developments are there in the area ransomware?
(Update: For an update on ransomware, read this Report or take a look at the latest ransomware figures in Live Tracker on.)
(Information: For a current example of ransomware, please have a look at our case studies here Read up or read a new guest post by Vincenz Klemm about it.)
Ransomware definition: What is ransomware? Ransomware is a type of malware that aims to encrypt a victim's data and demand a ransom to restore access. According to the federal situation report, cybercrime 2021 by the Federal Criminal Police Office (BKA) was ransomware the primary threat in the area of cybercrime. This threat will persist in 2023, albeit with some new developments and techniques.
Darknet market revenue fell from 2.6 billion dollars in 2021 to 1.3 billion dollars in 2022, according to a new study by blockchain analytics firm Chainalysis. Much of this decline is due to the Hydra Market closure , which was shut down by law enforcement agencies in Germany and the USA in April 2022. But this change does not mean the end of ransomware attacks.
Kroll Incident Response Services, a leading cybersecurity investigation firm, reported that the Ransomware incidents reached their peak in Europe in the fourth quarter of 2022. This increase is due to the efforts of Ransomware gangs attributed to recovering from sales losses. This will also not decrease in 2023. In the fourth quarter of 2022, began ransomwareto use malicious Microsoft OneNote files for phishing attacks. This technique is more effective as users have already become accustomed to malicious MS-Word and Excel documents.
Endpoints in the cloud are targeted by ransomware attackers. Misconfigurations and unpatched vulnerabilities are the primary goals of Ransomware groups. One Study by Google's Cyber Security Action Team shows that 86% of compromised cloud instances are being exploited as cryptocurrency miners. Attackers who are already “cryptojacking” can easily access the compromised systems ransomware use or access to Ransomware groups sell.
Another trend is the increased use of artificial intelligence (AI) by hackers. They use AI to automatically adapt to companies' defense tactics and react more quickly to system vulnerabilities. By automating tasks and limiting human error, for example by using blockchain technology to carry out attacks more efficiently, ransomware attacks be implemented even more effectively.
Hackers are no longer just focusing on ransom extortion, but also on general data extortion by publishing the data when there is no payment. Hackers are also starting to auction off the data (trade secrets, sensitive documents, etc.) to get the most out of the data breach.
The danger of ransomware attacks remains a serious threat in 2023. What is ransomware? is an important question that companies must ask themselves in order to effectively protect themselves. Companies should ensure that they regularly patches import and continuous backups create in order to be able to act again quickly in the event of an attack. Use our Baobab Risk Scan to verify your organization's security and identify vulnerabilities before cyber criminals can exploit them.
