The variant, targeting macOS arm64 architecture, first appeared on VirusTotal in November and December 2022 but went unnoticed until late April when it was discovered by MalwareHunterTeam. LockBit's macOS ransomware is an interesting development in the threat landscape, showing that the group is dipping its toes into the historically ransomware-free Mac environment. Meanwhile, Cl0p, which dramatically expanded its attack operations in March, has gone quiet this month, despite Microsoft observing them exploiting PaperCut vulnerabilities. In April, LockBit maintained its position as the top ransomware attacker and was also observed expanding into the Mac space.
This provides the best overall picture of ransomware activity, but the true number of attacks is far higher. In this report, "known attacks" are those where the victim didn't pay a ransom. This article is based on research by Marcelo Rivero, Malwarebytes' ransomware specialist, who monitors information published by ransomware gangs on their Dark Web sites.
0 kommentar(er)
