Rise of ransomware and spyware targeting industrial systems

Kaspersky has just released its Q2-2024 report analyzing the overall cybersecurity landscape for industrial control systems (ICS). Accordingly, the number of ransomware attacks increased by 20% compared to the previous quarter.

Critical infrastructure sectors around the world are facing growing risks from cyber attacks, with ransomware and spyware posing the most serious threats, the report finds.

According to Kaspersky research, the percentage of industrial control computers (ICS) globally at risk of being targeted by cyberattacks has decreased slightly from 24.4% in Q1-2024 to 23.5% in Q2-2024. However, the number of ransomware attacks has increased sharply, with the percentage of ICS computers affected by ransomware increasing 1.2 times compared to the previous quarter. The report also stated that spyware is a persistent threat. Attackers can use spyware to conduct espionage activities, paving the way for ransomware and targeted attacks.

“Malware that is as dangerous as ransomware can disrupt critical operations in any industry, from manufacturing, energy, transportation and others. Spyware, on the other hand, is often used to steal private information from businesses and resell it on the dark web to criminal gangs that use ransomware for extortion, hackers who carry out cyber attacks for political or social purposes (hacktivists) or advanced persistent threat actors (APTs) for future attacks,” said Evgeny Goncharov, head of Kaspersky Industrial Control Systems Cyber ​​Emergency Response Team (ICS CERT).

BINH LAM