In September 2023, ransomware attacks in France continued to show an upward trend, posing significant challenges for businesses, institutions and individuals. An in-depth analysis of the data provided by Ransomwatch reveals disturbing details about the target of these attacks and their frequency.
Who are the main victims?
The graph showing the breakdown of ransomware victim types in France clearly shows that SMEs are the most affected, with 69% of attacks targeting these companies. This is particularly worrying as these entities, often less protected than large corporations, can suffer devastating financial losses following an attack.
Healthcare establishments, with 12%, are the second most targeted category. This is alarming, as a successful attack can not only result in financial losses, but also endanger patients’ lives if medical systems are compromised.
Local authorities, associations/foundations and the “other” category follow, each being the target of 6% of attacks.
Trends in ransomware attacks
An examination of the volumes of claimed ransomware attacks shows a steady increase over the past three months:
- July 2023: 11 attacks
- August 2023: 16 attacks
- September 2023: 17 attacks
This underlines the importance for all entities, whether large or small, to strengthen their security measures and make their staff aware of potential threats.
Small businesses also in the firing line
The preconceived notion that only large companies are targets of cyber attacks is far from the truth. In fact, small businesses are increasingly being targeted by ransomware attacks.
Take the case of France in September, for example, where smaller companies were the victims of such attacks. The “Sud Trading Company” in the Hérault region, which specializes in wholesale trade and has 29 employees; “La Maison Mercier”, a cookie and chocolate factory in the Cher region with 41 employees; and the “Piex Group” in Paris, which specializes in the manufacture of pharmaceutical products and has 42 employees, were all affected.
These incidents demonstrate that cybercriminals make no distinction between large and small structures, underlining the importance for all companies, whatever their size, to reinforce their security measures.
Ransomware groups active in France in September 2023
The ransomware threat is carried by several cybercriminal groups. In September 2023, several of these groups claimed responsibility for attacks in France. The“lockbit3” group clearly stands out from the others, with the highest number of attacks claimed. It is closely followed by groups such as “alphv”,“cactus“, “noescape”, and several others who have also marked their presence on French territory.
The data clearly show that the threat does not emanate from a single group, but from several entities active simultaneously. This diversity of active groups underlines the complexity of the cyberthreat landscape in France, requiring reinforced vigilance and defenses on the part of companies and institutions.
Finally…
The threat of ransomware continues to grow in France, with small and medium-sized businesses on the front line. It is essential that organizations recognize the scale of the threat and take proactive steps to protect themselves. Awareness, training and investment in robust security solutions are more essential than ever.
Sources: Ransomwatch and the press
