LockBit 3.0 LockBit is once again the most prominent ransomware group of 2023, as they were in 2022. 2023 saw their activity levels jump over 20% from 846 total attacks for LockBit 2.0 and 3.0 (465 and 381 attacks respectively) combined in 2022, to 1039 attacks for LockBit 3.0 in 2023.
LockBit 3.0’s 2023 activity is nearly 250% that of the second most active threat group for the year, BlackCat, which themselves saw a 200% increase in activity since last year.
This shows how dominant LockBit has been in the ransomware space, that other threat groups can double or more their 2022 activity levels and still not be anywhere near LockBit’s level of activity. LockBit has consistently been at the top of the rankings of most active monthly threat groups, only being not the most active three times throughout the year in March, June, and August when they were the second most active threat group.
Figure 18: Total LockBit (2.0 & 3.0) Attacks Month-on-Month 2022 vs 2023
2022 saw LockBit (2.0 and 3.0 combine) represent 44% of all ransomware activity for the year.
As their real-terms attacks have continued to increase though, we can put this down to other groups emerging onto the ransomware scene, and existing groups ramping up their activity levels, as opposed to indicating that LockBit were in any sort of overall decline.
2023 saw that proportional share decrease, despite the increase in real-terms attacks, to just under 32% of the total ransomware activity for the year, a 28% decrease in their share of responsibility since last year.
43
Made with FlippingBook - PDF hosting