Now Loading

OpenText Reveals 2024’s Nastiest Malware: The Top Cyber Threats Targeting Critical Infrastructure

OpenText Reveals

In a stark warning to industries worldwide, OpenText has released its highly anticipated “Nastiest Malware of 2024” list, spotlighting the year’s most aggressive and sophisticated cyber threats. Now in its seventh annual release, the list from OpenText cybersecurity experts draws attention to the alarming evolution of malware and ransomware, particularly those targeting critical infrastructure. This relentless surge in attacks has underscored the need for enhanced security investments, with global cybersecurity spending projected to rise by 14.3% in 2024, reaching over $215 billion.

The 2024 list reveals ransomware aimed at essential services as a top concern, with cybercriminals zeroing in on critical infrastructure sectors, endangering everything from public health to national security. In this heightened climate, LockBit takes the spotlight as the year’s “nastiest malware,” holding the top rank due to its resilience and audacious pursuit of high-value targets. The FBI’s 2023 Internet Crime report highlights LockBit’s extensive impact, noting 175 documented attacks on critical infrastructure, making it one of the most entrenched and evasive ransomware groups. The continuous tug-of-war between the FBI and LockBit underscores how ransomware remains not only persistent but more technologically advanced, continually evading takedown efforts.

“Ransomware attacks on critical infrastructure are on the rise, and cybercriminals are increasingly using artificial intelligence to develop highly personalized threats, which significantly endangers national security and public safety,” stated Muhi Majzoub, EVP and Chief Product Officer at OpenText. “However, the increased attention on ransomware and cybersecurity is encouraging, as more organizations are proactively prioritizing cybersecurity investments. This commitment highlights their dedication to safeguarding essential services from evolving threats.” Majzoub’s statement echoes the urgency for preemptive defense measures, as this year’s list emphasizes just how adaptive and boundary-pushing these threats have become.

2024’s Most Notorious Cyber Villains

  1. LockBit
    Once again, LockBit leads the lineup as the year’s nastiest malware. This ransomware-as-a-service (RaaS) giant remains unfazed by law enforcement efforts, continually expanding its reach with a target of compromising one million businesses. LockBit’s dominance in 2024 underscores its reputation as one of the most formidable threats in today’s cyber landscape.
  2. Akira
    Making a bold entrance, Akira merges ’80s aesthetics with ruthless encryption tactics, targeting sectors like healthcare, manufacturing, and finance. This newcomer’s swift encryption strategies and aggressive deployment have quickly solidified its place in the ransomware arena, marking it as a rising RaaS favorite among affiliates.
  3. RansomHub
    Rumored to have roots in the Black Cat (ALPHV) group, RansomHub captured attention with its attack on Planned Parenthood, stealing and ransoming sensitive patient data. This group’s high-stakes ransom demands and willingness to exploit highly sensitive information make it one of the most notorious newcomers.
  4. Dark Angels
    Known for meticulously planned, high-impact attacks, Dark Angels has become infamous for securing multimillion-dollar ransoms, including one of the year’s largest at $75 million from a Fortune 50 company. Their advanced infiltration methods and selective targeting make them a formidable threat.
  5. Redline Stealer
    While not ransomware, Redline Stealer has gained notoriety for its credential theft and information-stealing prowess. Its skillful evasion techniques continue to make it a persistent challenge for businesses across various sectors.
  6. Play Ransomware
    Known for its versatility, Play Ransomware has captured headlines with attacks spanning both public and private sectors. By exploiting vulnerabilities in FortiOS and Remote Desktop Protocol (RDP) servers, Play Ransomware demonstrates how even legacy systems are vulnerable to relentless exploitation.

Upcoming Conferences