Ransomware group Akira: 11 months – 171 victims  

B2B Cyber ​​Security ShortNews

Share post

The APT group with the Akira ransomware remains extremely active. After the first occurrence in March 2023, there are now officially 171 victims - according to the company Logpoint. In addition to South Westphalia IT (SIT), even zoos are among the victims. 

The Akira ransomware has been actively attacking companies worldwide and has made headlines in 2023 by causing extensive damage and attracting the attention of cybersecurity authorities. In December, the Finnish National Center for Cybersecurity (NCSC-FI) reported that the Akira ransomware was carrying out increased attacks in Finland, wiping out NAS and tape backup devices.

The group exploits vulnerabilities in the VPN functionality of Cisco devices, such as CVE-2023-20269. In addition to SIT (Südwestfalen IT) in Germany The best-known victim in Europe is a Scandinavian IT service provider. At the end of January it also hit a zoo in Canada.

11 months, 171 victims, countless attack attempts

The security analysts at Logpoint had already published a blog with technical details last year. Since its discovery in March 2023, the Akira ransomware regularly infects corporate networks, encrypts private data and demands high ransom payments. As of January 2024, security researchers documented more than 171 victims worldwide.

The group continues to pose a significant threat and has impacted various industries worldwide, with a focus on the education, finance, real estate, manufacturing and consulting sectors.

Akira as RaaS – Ransomware-as-a-Service

Offered as ransomware-as-a-service, Akira ransomware demonstrates its versatility by attacking both Windows and Linux systems. Victims are forced to pay a double ransom to restore access to their files. It is noteworthy that 85,9 percent of the affected organizations are based in the USA and Canada.

Security teams worldwide are required to align their cybersecurity efforts with threat actors and mitigate the threat posed by Akira.

More at Logpoint.com


About Logpoint

Logpoint is the manufacturer of a reliable, innovative platform for cybersecurity operations. With the combination of advanced technology and a deep understanding of customers' challenges, Logpoint strengthens the capabilities of security teams and helps them combat current and future threats. Logpoint offers SIEM, UEBA, SOAR and SAP security technologies that converge into a complete platform that efficiently detects threats, minimizes false positives, autonomously prioritizes risks, responds to incidents and more.


Matching articles on the topic

Report: 40 percent more phishing worldwide

The current spam and phishing report from Kaspersky for 2023 speaks for itself: users in Germany are after ➡ Read more

BSI sets minimum standards for web browsers

The BSI has revised the minimum standard for web browsers for administration and published version 3.0. You can remember that ➡ Read more

Stealth malware targets European companies

Hackers are attacking many companies across Europe with stealth malware. ESET researchers have reported a dramatic increase in so-called AceCryptor attacks via ➡ Read more

IT security: Basis for LockBit 4.0 defused

Trend Micro, working with the UK's National Crime Agency (NCA), analyzed the unpublished version that was in development ➡ Read more

MDR and XDR via Google Workspace

Whether in a cafe, airport terminal or home office – employees work in many places. However, this development also brings challenges ➡ Read more

Test: Security software for endpoints and individual PCs

The latest test results from the AV-TEST laboratory show very good performance of 16 established protection solutions for Windows ➡ Read more

AI on Enterprise Storage fights ransomware in real time

NetApp is one of the first to integrate artificial intelligence (AI) and machine learning (ML) directly into primary storage to combat ransomware ➡ Read more

FBI: Internet Crime Report counts $12,5 billion in damage 

The FBI's Internet Crime Complaint Center (IC3) has released its 2023 Internet Crime Report, which includes information from over 880.000 ➡ Read more