SOCRadar® Cyber Intelligence Inc. | Top Ransomware Group is LockBit 2.0 in the Americas


Oct 11, 2021
3 Mins Read

Top Ransomware Group is LockBit 2.0 in the Americas

The Americas Regional DeepWeb Report, which emerged with the research of the SOCRadar analyst team, is now avaible for the first time. 

Dark web incidents, hacker forum mentions, compromised credentials, and data exposure findings in the APAC region are included in the report.

What’s In the Report?

SOCRadar, the early warning system for information security, analyzes thousands of deep web resources every day, including hacker forums and social channels. According to the deep web activities targeting Americas region between September 1 and September 30, 2021, for the firts time in the report includes information about the following categories:

  • Deep web mentions
  • Compromised credentials
  • Malware/bot-infected users
  • Highly critical data exposure results
  • Date of the latest exposure 

Country with the Most DeepWeb Sharing is USA

The five countries in which the shares on the deep web were directed the most were the United States, Brazil, Canada, Mexico, and Argentina, respectively. When the report is examined, it can be seen that the threats in the deep web are more frequent and intense in the USA and Brazil than in other countries. 

72 Percent of Data Sales Target Customer Data

During September, 40% of deep web threats are from ransomware gangs, making ransomware the number threat for both continents. According to the September 2021 Americas Regional DeepWeb report prepared by SOCRadar, ransomware attacks are followed by data sales with 24 percent and data leaks by 21 percent among threat actors. 

While customer data constituted 72.9 percent of data sales, this number was followed by customer database with 16.5 percent and sensitive data with approximately 8 percent. The third most common form of attack, data leaks, targeted customer data. 

Top Ransomware Group: LockBit

Ransomware groups that have been very active on both continents have become Lockbit 2.0, Conti, and BlackMatter, just like in Europe. 

The Sector With the Most DeepWeb Sharing: IT

According to the September 2021 Europe Regional DeepWeb report prepared by SOCRadar, “Unauthorized Access” ranks third among threat landscape with 12 percent. Among them, network access accounts for 44 percent and RDP for 16 percent. 

Among the countries located in the Americas, the top five sectors where cyber threats are most directed are IT, government agencies manufacturing, e-commerce, and banking, respectively.

Other important topics highlighted in the report were as follows:

Click to view and download the rest of the report.

Discover SOCRadar® Free Edition

With SOCRadar® Free Edition, you’ll be able to:

  • Discover your unknown hacker-exposed assets
  • Check if your IP addresses tagged as malicious
  • Monitor your domain name on hacked websites and phishing databases
  • Get notified when a critical zero-day vulnerability is disclosed

Free for 12 months for 1 corporate domain and 100 auto-discovered digital assets.
Try for free