The latest findings from Chainalysis have revealed a significant increase in stolen funds in crypto scams, almost doubling from $857 million to $1.58 billion by late July. Similarly, ransomware payments have shown growth, with figures at $449.1 million mid-year in 2023 compared to $459.8 million this year. This trend indicates a potential record-setting year for ransomware attacks. By the end of July in 2024, the total value of stolen assets had exceeded $1.58 billion, marking an 84.4% rise from the same period last year.
Despite only a slightly higher number of hacking incidents in 2024 compared to 2023, there has been a substantial increase in the average value compromised per event. The average value has surged by 79.46%, escalating from $5.9 million per incident in the first half of 2023 to $10.6 million per event so far in 2024. This indicates a growing success rate for cybercriminals in extracting higher amounts from each breach.
Chainalysis also noted a shift in criminal tactics, with hackers reverting to targeting centralized exchanges after a period of focusing on decentralized platforms. Following a spike in attacks on DeFi services and cross-chain bridges in 2022, criminals, including those from North Korea, are resorting to advanced social engineering tactics to breach exchanges. An alarming report by the UN revealed that over 4,000 North Koreans are currently working for Western tech companies, potentially aiding cybercrime efforts.
Record-Breaking Ransom Payments
Ransomware attacks are reaching new heights in 2024, with the highest single payment reaching approximately $75 million to the ransomware group Dark Angels. This represents a 96% increase from 2023 and a staggering 335% rise from 2022. Larger companies and key infrastructure providers are increasingly becoming prime targets for ransomware attacks, as their substantial financial resources and systemic importance make them more likely to succumb to large ransom demands.
Despite disruptions caused by groups like LockBit and ALPHV/BlackCat, ransomware activity has remained fairly consistent. According to Andrew Davis, General Counsel at Kiva Consulting, former affiliates of well-known threat actor operations and new ransomware groups are continuously evolving their methods and techniques to carry out attacks. This includes expanding means for initial access and lateral movement approaches, demonstrating a constant evolution in cybercriminal strategies.
The escalating threat of stolen funds and ransomware in 2024 poses a severe challenge to cybersecurity efforts globally. With increasing average values compromised per incident, a shift in criminal tactics towards centralized exchanges, and record-breaking ransom payments, the need for robust cybersecurity measures is more critical than ever. It is essential for organizations, both large and small, to prioritize cybersecurity awareness, implement stringent security protocols, and stay vigilant against evolving cyber threats to safeguard their digital assets and sensitive information.