Ransomware tracking in Italy: recent cases and prevention

Ransomware, a type of malware that spreads rapidly on a global scale, poses a growing threat to businesses and individuals in Italy. The impact of these attacks can be monitored through a continuously updated dashboard, thanks to which it is possible to examine the claims of cybercriminals related to the various episodes of ransomware that have hit our country in recent months. This monitoring platform, known as Dashboard Ransomware Monitor (DRM), is an Italian project that tracks the activities of so-called "cyber gangs" in real time, groups of cybercriminals specialized in ransomware attacks.

The threat of ransomware and its consequences

Ransomware often requires payment in cryptocurrencies, such as Bitcoin, making it difficult to track down attackers. An increasingly common practice is that of "double extortion": after stealing and encrypting data, criminals threaten to make it public on websites they manage if a ransom is not paid within a certain period of time. In Italy, this is a particularly serious threat to companies that handle sensitive customer data, such as financial and personal information. Statistics from the Personal Data Protection Authority show that at least 3,460 IT security breaches occurred in Italy in 2020, highlighting the need to implement effective security protocols to prevent ransomware attacks.

Prevention and management of ransomware attacks

Preventing ransomware attacks requires careful planning, employee training, and robust cybersecurity measures in place. Implementing these strategies is the only way to effectively protect your data and limit the damage deriving from any attacks. The article goes on to detail the ransomware attacks affecting specific Italian companies in 2023, highlighting the growing number of incidents and the importance of a proactive approach to cybersecurity.

Ransomware in Italy: recent cases

Since January 2023, several Italian companies, both private and public, have been affected by ransomware attacks. Among these, Fruttagel SCpA, Somacis SpA and the Municipality of Torre del Greco in January; Tonoli Spedizioni srl and Cantina Tollo in February; Bettuzzi And Partners and Bonta Viva in March; and Metal Work and Errebielle Srl in April. These attacks were carried out by various criminal groups, such as ALPHV/BlackCat, Lockbit3, and RansomHouse, demonstrating the spread and variety of ransomware threats. In all cases, the data was stolen and then released.