Just Three Ransomware Gangs Accounted for 40% of Attacks Last Month
Qilin, Akira and Dragonforce were responsible for 40% of 672 ransomware incidents reported in March, says Check Point
Akira is a ransomware family that can disrupt systems, with coverage of reported incidents, technical analysis, disruption efforts, and defensive guidance.
Search across headline titles and summaries.
Background for this topic.
Akira is a ransomware family known for encrypting victims’ files and demanding payment for decryption keys. It typically targets Windows systems, using strong encryption algorithms to lock data and hinder recovery without the attacker’s cooperation. Akira ransomware often appends specific file extensions to encrypted files and may leave ransom notes with instructions for payment.
From a security perspective, Akira poses risks including data loss and operational disruption. Defenders should focus on maintaining up-to-date backups, applying timely patches to reduce vulnerabilities that could enable initial access, and monitoring for indicators of compromise such as unusual file encryption activity or ransom note creation. Network segmentation and endpoint detection can help contain infections and support incident response efforts against Akira ransomware attacks.
Weekly headline count for the current query.
Qilin, Akira and Dragonforce were responsible for 40% of 672 ransomware incidents reported in March, says Check Point
Halcyon says Akira is now capable of carrying out an entire ransomware attack in less than an hour
Akira ransomware has extorted $244M since September 2025, with some attacks exfiltrating data in just two hours, a joint cybersecurity advisory warns
Akira ransomware attacks on SonicWall SSL VPN appliances are bypassing its MFA for rapid deployment
SonicWall has claimed an uptick in Akira ransomware intrusions is due to legacy password use
Arctic Wolf has spotted an increase in Akira ransomware attacks targeting SonicWall SSL VPNs
Claims on ransomware groups’ data leak sites reached an all-time high in November, with 632 reported victims, according to Corvus Insurance
A joint advisory from Europol and US and Dutch government agencies estimated that Akira made around $42m in ransomware proceeds from March 2023 to January 2024