The Department of Homeland Security’s cybersecurity agency, the FBI and national security Agency urged organizations in an alert Wednesday to update their systems amid an increase in conti ransomware attacks.
DHS’ Cybersecurity and Infrastructure Security Agency and the FBI reported over 400 attacks using Conti ransomware against mostly U.S. targets between spring 2020 and spring 2021. The group primarily runs “double extortion” campaigns in which hackers encrypt and steal files. In the scheme, they demand a ransom from the victim in order to restore access to the systems; if the victim doesn’t pay, the actors threaten to leak the stolen data.
The Conti ransomware gang has already been linked to several major attacks this year. In June the gang stole roughly 18,000 files from the Tulsa police, leaking some after the city refused to pay. Conti ransomware also caused a weeks-long disruption to Ireland’s public health system earlier this year.
“Americans are routinely experiencing real-world consequences of the ransomware epidemic as malicious cyber actors continue to target large and small businesses, organizations, and governments,” said Eric Goldstein, cisa’s