Cybersecurity

'Operation Cronos' seizes major cybercrime group – and other cybersecurity news to know this month

Published · Updated
Computer.

Also in this week's cybersecurity news: Ransomware attacks extort $1 billion and big tech to counter deepfakes during 2024 elections. Image: Unsplash/Philipp Katzenberger

Akshay Joshi
Head, Centre for Cybersecurity, World Economic Forum
  • This regular round-up brings you key cybersecurity stories from the past month.
  • Top cybersecurity news: Law enforcement agencies have disrupted a major cybercrime group; Ransomware attacks extort $1 billion from victims; Microsoft reveals state-sponsored hackers use its AI tools; Big tech to counter deepfakes during 2024 elections.

1. Fall of a major cybercrime group

International law enforcement agencies combined efforts to take down LockBit, a major ransomware organization. On 19 February, the UK's National Crime Agency (NCA), working with the FBI and other national police forces, seized control of the LockBit extortion website.

A screenshot taken on February 19, 2024 shows a take down notice that a group of global intelligence agencies issued to a dark web site called Lockbit.
An international police task force has shut down Lockbit, a major ransomware operation. Image: Reuters

A message posted on the LockBit website read: "This site is now under the control of the National Crime Agency of the UK, working in close cooperation with the FBI and the international law enforcement task force, Operation Cronos."

Have you read?

Meanwhile, victims of ransomware attacks paid $1.1 billion to cybercriminals in 2023. The record-breaking payments were reported by the UK's Guardian newspaper, citing research from security specialists, Chainalysis.

The company described 2023 as a year that "marks a major comeback for ransomware". The record pay-outs by victims of such attacks reversed a large fall in financial losses seen in 2022.

Total value received by ransomware attackers, 2019 - 2023
Vicitms of ransomware attacks paid out $1.1 billion to cybercriminals in 2023. Image: Chainalysis

The company says major institutions including the BBC and British Airways were hit by ransomware attacks. Hospitals and schools in the United States were among the targets. The research suggests cybercriminals are increasingly targeting large organizations with the aim of extorting higher sums of money. In 2023, a greater share of ransom payments topped $1 million or more.

To mount a ransomware attack, criminals hack into IT systems and plant software which locks out legitimate users and encrypts vital data. They then demand a ransom, often to be paid in cryptocurrency, to unlock access and restore data.

To better understand the cybercriminal ecosystem, visit the Forum's Cybercrime Atlas and Partnership Against Cybercrime initiatives.

2. Big tech vows to defend democracy

Major tech companies including Amazon, Google, Microsoft and Meta have signed an accord aimed at protecting elections from AI-driven misinformation and deception.

According to a report from the BBC, 20 firms have committed to deploy technology to weed out AI-generated content designed to deceive voters. The Tech Accord to Combat Deceptive Use of AI in 2024 Elections was announced at the Munich Security Conference. “Democracy rests on safe and secure elections,” said Kent Walker, President of Global Affairs at Google, adding “today's accord reflects an industry-wide commitment against AI-generated election misinformation that erodes trust."

There is mounting concern that deepfake video and audio content that misrepresents politicians could pose a serious threat to free and fair elections. In a blog post about the accord signed in Munich, Microsoft explained how tech companies can act to defend democracy.

Commitments to help combat deceptive use of AI in 2024 elections.
Tech companies are uniting on methods to protect democracy during elections. Image: Microsoft

For more, watch a session from the World Economic Forum's Annual Meeting 2024 in Davos, Switzerland, on Protecting Democracy from Bots and Plots.

3. Cybersecurity news in brief

More than 100 hospitals and healthcare facilities in Romania have been taken offline by a major ransomware attack. The Romanian National Cyber Security Directorate said 25 hospitals had been compromised and dozens more shut down their IT networks as a precaution. The Directorate urged health facility managers against paying ransom demands.

In the US, a top cybersecurity official has warned that hospitals and schools are increasingly being targeted by cybercriminals. Institutions such as these are "some of the weakest in terms of cybersecurity," Ann Neuberger, the US Deputy National Security Adviser for Cyber and Emerging Technology, told CBS News.

Discover

How is the Forum tackling global cybersecurity challenges?

North Korea is under investigation by the United Nations after a series of cyberattacks aimed at boosting Pyongyang's nuclear weapons programme. A Reuters report quoted UN investigators, saying: "The panel is investigating 58 suspected DPRK cyberattacks on cryptocurrency-related companies between 2017 and 2023, valued at approximately $3 billion, which reportedly help fund DPRK's WMD development."

A total of 35 countries have signed a declaration calling for stronger action to control the use and spread of spyware. A Reuters report says the agreement recognizes the growing threat that spyware poses to national security and human rights. Spyware tools can be used by hackers who carry out cybercrime campaigns on behalf of commercial clients.

A hacker group called Anonymous Sudan has claimed to be behind an attack on Cambridge University that locked students and faculty out of IT systems. Varsity, the independent newspaper for the university, described the incident as a Distributed Denial of Service (DDoS) attack, while TechRadar reported that Manchester University had also been targeted by the group.

4. More about cybersecurity on our blog

The blurring of lines between cybercrime and violent organized crime is threatening people in South-East Asia. In August 2023, the UN reported at least 220,000 people had been trafficked and forced to operate in online scams.

The year 2024 is shaping up to be a defining year for cybersecurity, as AI brings a range of security benefits - but also adds a depth of risk never seen before. The Forum's Global Security Outlook is a comprehensive download on issues ranging from cyber resilience to skills shortages in the global security sector.

The 'internet of things' is another advanced technology that is helping to create sustainable solutions, such as wearable health trackers for 21st-century consumers. The World Economic Forum has teamed up with leading players in the sector to produce a policy framework for protecting consumers from security risks.

Loading...
Share:
Contents
1. Fall of a major cybercrime group2. Big tech vows to defend democracy3. Cybersecurity news in brief4. More about cybersecurity on our blog

Collaboration is key to tackling cybercrime. Recent takedowns show why

Sean Doyle and Natalia Umansky

November 26, 2024

How to protect the global supply chain from phishing scams

About us

Engage with us

  • Sign in
  • Partner with us
  • Become a member
  • Sign up for our press releases
  • Subscribe to our newsletters
  • Contact us

Quick links

Language editions

Privacy Policy & Terms of Service

Sitemap

© 2024 World Economic Forum