The year 2023 saw sustained activity in terms of ransomware cyberattacks, with a notable impact both nationally and internationally. This round-up of ransomware attacks in 2023, offers an overview of the dominant ransomwares in France and a comparison of the number of attacks by country, highlighting current cybersecurity challenges.
The most active ransomwares in France in 2023
The graph above shows the predominance of different types of ransomware in France in 2023. Topping the list: Lockbit 3.0 stands out as the most active (as in December), accounting for 34.9% of reported attacks. This data shows the ability of this ransomware to affect a large number of organizations. This trend shows that cybercriminals are continuing to innovate and adapt their attacks.
We are also seeing a wide diversity of ransomware active on French territory, such as 8base, NoEscape… These groups are less well known, but have a strong presence in France.
Number of ransomwareattacks claimed by country in 2023
This second chart presents an international ranking of the countries most affected by ransomware in 2023. This assessment of claimed attacks reveals that the United States was much more impacted than other countries. This can be explained by the size of the economy and the number of companies present.
Although attacks are less numerous in the UK, Canada, Germany, Italy and France, the problem is widespread and global. This data, gathered from sources such as ransomwatch, highlights the importance for businesses of all sizes to remain vigilant and protect their infrastructures and data against ransomware.
Conclusion on ransomware attacks in 2023
Data from 2023 reveals a constant and diversified cyberthreat in France and worldwide. Lockbit 3.0 has emerged as the most active ransomware in France, part of a wider range of malware targeting businesses in different industries.
Although France lags behind other nations such as the USA, UK and Canada in terms of total number of attacks, the very existence of these incidents highlights the ongoing need to adopt robust security measures and raise awareness of the ransomware threat.
Sources: Ransomwatch and the press
