{"id":58429,"date":"2023-03-10T07:01:30","date_gmt":"2023-03-10T10:01:30","guid":{"rendered":"https:\/\/abes.org.br\/?p=58429"},"modified":"2023-03-08T07:07:35","modified_gmt":"2023-03-08T10:07:35","slug":"estudo-ibm-ransomware-persiste-apesar-de-melhorias-na-deteccao-em-ciberseguranca-durante-2022","status":"publish","type":"post","link":"https:\/\/abes.org.br\/en\/estudo-ibm-ransomware-persiste-apesar-de-melhorias-na-deteccao-em-ciberseguranca-durante-2022\/","title":{"rendered":"IBM Study: Ransomware Persists Despite Improved Cybersecurity Detection Through 2022"},"content":{"rendered":"

Attempts to hijack email conversations have intensified globally;<\/i><\/p>\n

Ransomware attacks are no longer executed in months, but in days;<\/i><\/p>\n

Retail is the most extorted sector in Brazil.<\/i><\/p>\n

 <\/p>\n

IBM Security released its annual X-Force Threat Intelligence Index report, which points out that, although the number of ransomware incidents in the world fell by only 4 percentage points from 2021 to 2022, in Brazil this drop was a considerable 12 percentage points. Furthermore, despite a higher success rate in detecting and preventing ransomware, attackers continued to innovate. The study shows that the average time to complete a ransomware attack decreased from 2 months to less than 4 days.<\/p>\n

According to the 2023 report, the implementation of backdoors \u2014 loopholes that allow remote access to systems \u2014 emerged as the second action of attackers last year in Brazil. Many of these backdoor cases were related to ransomware attempts, where defenders were able to detect the action before it was possible to implement the attack. The increase in backdoor deployments can be partially attributed to its high market value. X-Force noted that threat actors sell access to existing backdoors on the dark web for up to US\uff0410,000, compared to stolen credit card data, which sells for less than US\uff0410 today.<\/p>\n

Data theft (32%), data leaks (22%) and data destruction (22%)<\/em><\/p>\n

were the most common actions carried out by cybercriminals in Brazil<\/em><\/p>\n

 <\/p>\n

\"\"\u201cIt is clear that attackers are being refined to gain efficiency in ransomware incidents, which is a well-known method of extortion here in the country. In addition, the implementation of backdoors has gained relevance, that is, cybercriminals are increasingly looking to spray their attack strategies, including reaching new economic sectors that were less highlighted in the last report. In this context, it is essential that companies envision a proactive threat-based security strategy and a well-tailored incident response plan that also considers the impact of an attack on the final victims,\u201d says Roberto Engler, Security Leader at IBM Brazil .
\nThe IBM Security X-Force Threat Intelligence Index tracks new and existing trends and attack patterns from billions of data points from network devices and endpoints, incident response engagements and other sources. Some of the main findings of the latest report in Brazil are:<\/p>\n