In March 2025, recorded ransomware attacks fell to 600, a reduction of 32% from the previous month; however, compared to March 2024, incidents soared by 46%. This decline may misrepresent the true threat landscape, as it is attributed to prior large-scale events. Notably, Babuk 2.0 has emerged as a key player, but its authenticity is questioned, suggesting potential fraudulent behavior. Despite seeming drops, threat actors are evolving and employing sophisticated tactics to instigate chaos and grab attention in the ransomware arena.
On a month-by-month basis, recorded ransomware attacks dropped by 32% in March 2025, but year-on-year incidents increased by 46% compared to March 2024.
NCC's Matt Hull warned that the decline in attacks may be misleading, emphasizing the complexity and sophistication of current ransomware methods.
Babuk 2.0 emerged as a significant player, but its legitimacy is questioned, leading researchers to label it as potentially fraudulent and using old data.
Threat actors are diversifying their tactics, keeping pace with the evolving ransomware landscape to ensure maximum disruption and public attention.
Collection
[
|
...
]