Connect with us


Ransomware attacks surge by 62%, according to Sophos



Mark Loman

The cybersecurity firm highlighted the effectiveness of Sophos CryptoGuard, an anti-ransomware technology, in monitoring malicious file encryption and providing immediate protection and rollback capabilities, even in cases where the ransomware does not appear on the protected host.

Sophos’ Vice President of Threat Research and co-creator of CryptoGuard, Mark Loman, emphasized the growing threat of remote encryption, stating, “Remote encryption is going to stay a perennial problem for defenders, and based on the alerts we’ve seen, the attack method is steadily increasing.”

Since the emergence of CryptoLocker in 2013, which was the first ransomware to employ remote encryption with asymmetric encryption, adversaries have exploited security gaps in organizations worldwide and the rise of cryptocurrency to escalate the use of ransomware.

Loman explained the challenge posed by remote encryption and the need for innovative solutions, saying, “Other solutions focus on detecting malicious binaries or execution. In the case of remote encryption, the malware and execution reside on a different computer (unprotected) than the one having the files encrypted. The only way to stop it is by watching the files and protecting them. That’s why we innovated CryptoGuard.”