Cyber extortion sees huge rise — and small businesses are four times more likely to be hit

Global Satellite System
(Image credit: Shutterstock)

Cyber extortion remains the most prominent threat facing businesses of all sizes across all industries, a new report from Orange Cyberdefense has found.

The 2024 Cy-Explorer report worryingly uncovered that the number of victims of cyber extortion scams has grown by 77% year on year.

The research added small businesses are four times more likely to be impacted by cyber extortion than medium and large businesses.

 Cyber extortion and the “dark number”

Hackers looking to apply pressure on a business that has suffered a ransomware attack may post snippets of the stolen data on dark web leak sites to apply additional pressure on the victim organization to pay up the ransom, or suffer the consequences.

In Q1 of 2024 alone, there were 1,046 organizations that were the victims of double-extortion. The actual figure for victims of ransomware attacks is likely to be much higher - known as the “dark number” - due to the stats on cyber extortion being gathered from observable data on dark web leak sites.

Hackers are increasingly targeting regions with strong economic growth and regions with shared languages, with attacks in the US, UK and Canada increasing 108%, 96% and 76% respectively. Europe also saw a 60% increase in cyber extortion.

All industries are at risk of being targeted, with the top three being manufacturing, professional, scientific, and technical services, and wholesale trade. The report points out that there has been a marked increase in attacks against health care and social assistance organizations, with Orange Cyberdefense stating that, “Threat Actors currently seem completely willing to compromise and extort healthcare institutions despite the societal implications and potential political consequences.”

Moreover, victims of cyber extortion are repeatedly having their data posted on leak sites by different threat actors over long periods of time, as threat actors seek to increase pressure, inflict punishment on organizations that refuse to pay up, and to recoup financial investment by selling the stolen data. Some organizations had their data posted up to three times across different sites by multiple different threat groups.

Luckily for us, threat actors are predictable and stick with what works for them. Their tactics, techniques and procedures (TTPs) do not drastically change, and the vulnerabilities they exploit can be mitigated with patch management and vulnerability management. Orange Cyberdefense offers the following recommendations to protect against cyber extortion, ransomware and other general malware:

  • Put in place a backup plan to keep the data most important to your organization safe, in an offline and/or offsite location. Plans for restoring backups should be tested regularly, and the backups themselves should be kept up to date with critical data.
  • Ensure your devices use up-to-date software, especially if they are internet-facing, using a well-maintained asset register.
  • Put in place a strong multi-factor authentication system to mitigate initial-access and lateral movement, and only provide users access to the systems they need to do their job.

More from TechRadar Pro

Benedict Collins
Staff Writer (Security)

Benedict has been writing about security issues for over 7 years, first focusing on geopolitics and international relations while at the University of Buckingham. During this time he studied BA Politics with Journalism, for which he received a second-class honours (upper division), then continuing his studies at a postgraduate level, achieving a distinction in MA Security, Intelligence and Diplomacy. Upon joining TechRadar Pro as a Staff Writer, Benedict transitioned his focus towards cybersecurity, exploring state-sponsored threat actors, malware, social engineering, and national security. Benedict is also an expert on B2B security products, including firewalls, antivirus, endpoint security, and password management.

Read more
Concept art representing cybersecurity principles
How to combat exfiltration-based extortion attacks
ransomware avast
“Every organization is vulnerable” - ransomware dominates security threats in 2024, so how can your business stay safe?
A laptop with a red screen with a white skull on it with the message: "RANSOMWARE. All your files are encrypted."
More reports claim 2024 was the worst year for ransomware attacks yet
ransomware avast
AI is helping hackers get access to systems quicker than ever before
Flags of Iran, China, Russia and North Korea on a wall. China North Korea Iran Russia alliance
Cybercrime is helping fund rogue nations across the world - and it's only going to get worse, Google warns
A digital representation of a lock
Exploits on the rise: How defenders can combat sophisticated threat actors
Latest in Pro
Epson EcoTank ET-4850 next to a TechRadar badge that reads Big Savings
I searched for the best printer deal you won't find in the Amazon Spring Sale
Microsoft Copiot Studio deep reasoning and agent flows
Microsoft reveals OpenAI-powered Copilot AI agents to bosot your work research and data analysis
Group of people meeting
Inflexible work policies are pushing tech workers to quit
Representational image depecting cybersecurity protection
Third-party security issues could be the biggest threat facing your business
An image of network security icons for a network encircling a digital blue earth.
Why multi-CDNs are going to shake up 2025
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Broadcom warns of worrying security flaws affecting VMware tools
Latest in News
EA Sports F1 25 promotional image featuring drivers Oscar Piastri, Carlos Sainz and Oliver Bearman.
F1 25 has been officially announced, with this year's entry marking a return for Braking Point and a 'significant overhaul' for My Team mode
Garmin clippd integration
Garmin's golf watches just got a big software integration upgrade to help you improve your game
Robert Downey Jr reveals himself as Doctor Doom to a delighted crowd at San Diego Comic-Con 2024
Marvel is currently making a major announcement about Avengers: Doomsday's cast on YouTube, and I think it's going to be a long-winded reveal
Samsung QN90F on yellow background
Samsung announces US prices for its 2025 mini-LED TV lineup, and it’s good and bad news
Nintendo Switch Lite
Forget the Nintendo Switch 2, the original Switch is getting one last hurrah in a surprise Nintendo Direct tomorrow
The Samsung Galaxy S25 Edge on display the January 22, 2025 Galaxy Unpacked event.
Samsung Galaxy S25 Edge colors seemingly revealed in new video, and there’s another sign of an imminent launch