Summary
TLDR: The FBI, CISA, NCSC-NL, and EC3 issued a warning about Akira ransomware, responsible for attacks on businesses worldwide. Akira actors use various techniques to gain access, move laterally, steal data, and demand ransom payments in Bitcoin. Recommendations have been provided to mitigate the risk of attacks. Ransomware attacks have intensified, with $1 billion extorted in 2023, highlighting the need for organizations to enhance cyber defenses.
Key Points
1. The United States Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), the Netherlands’ National Cyber Security Centre (NCSC-NL), and Europol’s European Cybercrime Centre (EC3) have issued a joint warning about Akira ransomware.
2. Akira threat actors have amassed an estimated $42 million in ransom payments as of January 1, 2024. They have targeted various industries, raising significant concerns for organizations worldwide.
3. Ransom payments are paid in Bitcoin to crypto wallet addresses provided by the threat actors.