{"id":16587,"date":"2022-11-24T16:00:52","date_gmt":"2022-11-24T15:00:52","guid":{"rendered":"https:\/\/www.databack.fr\/non-categorise\/2022-reports-on-cybercrime-and-ransomware\/"},"modified":"2025-06-30T17:29:12","modified_gmt":"2025-06-30T15:29:12","slug":"2022-reports-on-cybercrime-and-ransomware","status":"publish","type":"post","link":"https:\/\/www.databack.fr\/en\/blog\/2022-reports-on-cybercrime-and-ransomware\/","title":{"rendered":"2022 reports on cybercrime and ransomware"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\"><em><em><em><em><em>Several reports provide an overview of cybercrime and threat trends (ransomware, phishing&#8230;) for the year 2022. The study on <a href=\"https:\/\/www.besse.fr\/sites\/default\/files\/2022-10\/BESSE_STELLIANT_EtudeCyber_2022_pl_0.pdf\" target=\"_blank\" rel=\"noreferrer noopener\">cyber claims<\/a> published by BESS\u00c9 and Groupe Stelliant, and the report on cybersecurity incident response revealed by Wavestone, help prepare companies for 2023&#8230; <\/em><\/em><\/em><\/em><\/em><\/p>\n\n<h2 class=\"wp-block-heading\">Trends in 2022: ransomware and phishing<\/h2>\n\n<p class=\"wp-block-paragraph\">Unsurprisingly, <strong>ransomware<\/strong> dominates the cybercrime landscape. Far ahead of attacks of other kinds (DDoS, fraud, website or application compromise, data theft), they account for 89% of cyberattacks suffered by businesses (BESS\u00c9 and Groupe Stelliant sample studied over the 2019-2021 interval). <\/p>\n\n<p class=\"wp-block-paragraph\">Designed for extortion, ransomware compromises IS activity and data availability through encryption. Their attacks may be accompanied by data theft, with the threat of disclosure. The primary objective of ransomware is therefore to penetrate their targets&#8217; information systems, exploiting every possible security loophole.  <\/p>\n\n<p class=\"wp-block-paragraph\"><strong>Phishing<\/strong> is the most widespread attack mechanism, ahead of brute-force attacks, web or IS vulnerabilities, account usurpation or <em>remote access<\/em>. According to BESS\u00c9 and Stelliant, these fraudulent e-mail or SMS campaigns aimed at recovering the target&#8217;s credentials account for 30% of attacks, and 51% according to Wavestone (taking into account the use of valid accounts). <\/p>\n\n<h2 class=\"wp-block-heading\">Cybercriminals and hackers: profiles, motivations and targeting<\/h2>\n\n<p class=\"wp-block-paragraph\">Unsurprisingly, <strong>cybercrime<\/strong> is also on the rise. In its <a href=\"https:\/\/www.cert.ssi.gouv.fr\/uploads\/20220309_NP_WHITE_ANSSI_panorama-menace-ANSSI.pdf\" target=\"_blank\" rel=\"noreferrer noopener\">IT threat panorama<\/a> published in March 2022, the ANSSI (Agence nationale de la s\u00e9curit\u00e9 des syst\u00e8mes d&#8217;information) reported 1,082 proven IS intrusions for 2021, compared with 786 in 2020. At the same time, cybercriminals and hackers are improving their capabilities and getting better organized.  <\/p>\n\n<p class=\"wp-block-paragraph\">The main motive for cyber attacks remains financial gain (51% according to Wavestone, in the form of extortion via ransomware or resale of stolen data), ahead of computer malice, destabilization and espionage. Three quarters of the attacks managed by Wavestone&#8217;s CERT-W<em>(Computer emergency response team<\/em>) are opportunistic, targeting neither a particular type of organization nor a particular sector of activity. <\/p>\n\n<p class=\"wp-block-paragraph\">According to Wavestone, cybercriminal groups are becoming increasingly organized and professionalized. In early 2022, the disclosure of documents from the Conti group revealed a structure similar to that of a company, with recruitment, training, purchasing and other functions. Providers of cybercriminal services (hosting, <em>RaaS <\/em>or <em>Ransomware as a Service<\/em>&#8230;) are developing accordingly.  <\/p>\n\n<h2 class=\"wp-block-heading\">Cybersecurity and cyber resilience for businesses<\/h2>\n\n<p class=\"wp-block-paragraph\">Developments in corporate <strong>cybersecurity<\/strong> are influencing the nature of the IT threat. Cyber-attacks are turning away from large companies that are investing in their IT protection. The result is a trend towards attacks of opportunity, aimed at the middle market (SMEs, ETIs, etc.) and the public sector (healthcare, education, etc.).  <\/p>\n\n<p class=\"wp-block-paragraph\">The BESS\u00c9 and Stelliant study on the loss experience of IT threats underlines the impact of cyber attacks on companies: business disruption, total or partial rebuilding of information systems, operating losses&#8230; According to the study, companies still largely underestimate the time it takes to get back up and running, and the costs generated by IT losses.<\/p>\n\n<p class=\"wp-block-paragraph\">Instead, companies need to cultivate their cyber resilience by identifying their vital data and applications, establishing a BCP\/ERP and a communication plan. The Wavestone report reminds us of the need to combine innovative measures with the fundamentals of cybersecurity: backup and recovery strategies, third-party lifecycle management, strengthening cloud security, the need to invest (cyber-insurance, recourse to experts, etc.), etc. <\/p>\n\n<p class=\"wp-block-paragraph\"><em>Sources :<\/em><\/p>\n\n<ul class=\"wp-block-list\">\n<li>ANSSI, <em><a href=\"https:\/\/www.cert.ssi.gouv.fr\/uploads\/20220309_NP_WHITE_ANSSI_panorama-menace-ANSSI.pdf\" target=\"_blank\" rel=\"noreferrer noopener\">IT Threat Panorama 2021<\/a><\/em>March 2022;<\/li>\n\n\n\n<li>BESS\u00c9 and Stelliant, <em><a href=\"https:\/\/www.besse.fr\/sites\/default\/files\/2022-10\/BESSE_STELLIANT_EtudeCyber_2022_pl_0.pdf\" target=\"_blank\" rel=\"noreferrer noopener\">Cyber risks &#8211; Analysis of claims experience: what lessons can be learned?<\/a><\/em>October 2022<em>;<\/em><\/li>\n\n\n\n<li>Wavestone, <em>CERT-W Report 2022 &#8211; Trends and analysis of one year of incident response<\/em>, September 2022.<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>Several reports provide an overview of cybercrime and threat trends (ransomware, phishing&#8230;) for the year 2022. The study on cyber claims published by BESS\u00c9 and Groupe Stelliant, and the report on cybersecurity incident response revealed by Wavestone, help prepare companies for 2023&#8230; Trends in 2022: ransomware and phishing Unsurprisingly, ransomware dominates the cybercrime landscape. Far [&hellip;]<\/p>\n","protected":false},"author":12,"featured_media":14672,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_yoast_wpseo_title":"Databack - 2022 report on cybercrime and ransomware","_yoast_wpseo_metadesc":"Several reports provide an overview of cybercrime and threat trends for the year 2022.","footnotes":""},"categories":[133,77],"tags":[],"ppma_author":[146],"class_list":["post-16587","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-blog","category-ransomware-incidents","author-benoit-jaunet-en"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.2 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Databack - 2022 report on cybercrime and ransomware<\/title>\n<meta name=\"description\" content=\"Several reports provide an overview of cybercrime and threat trends for the year 2022.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.databack.fr\/en\/blog\/2022-reports-on-cybercrime-and-ransomware\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Databack - 2022 report on cybercrime and ransomware\" \/>\n<meta property=\"og:description\" content=\"Several reports provide an overview of cybercrime and threat trends for the year 2022.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.databack.fr\/en\/blog\/2022-reports-on-cybercrime-and-ransomware\/\" \/>\n<meta property=\"og:site_name\" content=\"Databack\" \/>\n<meta property=\"article:published_time\" content=\"2022-11-24T15:00:52+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-06-30T15:29:12+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.databack.fr\/wp-content\/uploads\/2022\/11\/ransomwares-bilan-2022.jpeg\" \/>\n\t<meta property=\"og:image:width\" content=\"600\" \/>\n\t<meta property=\"og:image:height\" content=\"400\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Benoit Jaunet\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Benoit Jaunet\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Databack - 2022 report on cybercrime and ransomware","description":"Several reports provide an overview of cybercrime and threat trends for the year 2022.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.databack.fr\/en\/blog\/2022-reports-on-cybercrime-and-ransomware\/","og_locale":"en_US","og_type":"article","og_title":"Databack - 2022 report on cybercrime and ransomware","og_description":"Several reports provide an overview of cybercrime and threat trends for the year 2022.","og_url":"https:\/\/www.databack.fr\/en\/blog\/2022-reports-on-cybercrime-and-ransomware\/","og_site_name":"Databack","article_published_time":"2022-11-24T15:00:52+00:00","article_modified_time":"2025-06-30T15:29:12+00:00","og_image":[{"width":600,"height":400,"url":"https:\/\/www.databack.fr\/wp-content\/uploads\/2022\/11\/ransomwares-bilan-2022.jpeg","type":"image\/jpeg"}],"author":"Benoit Jaunet","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Benoit Jaunet","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.databack.fr\/en\/blog\/2022-reports-on-cybercrime-and-ransomware\/#article","isPartOf":{"@id":"https:\/\/www.databack.fr\/en\/blog\/2022-reports-on-cybercrime-and-ransomware\/"},"author":{"name":"Benoit Jaunet","@id":"https:\/\/www.databack.fr\/en\/#\/schema\/person\/160c17ae25712502025ccd4cbdd63b44"},"headline":"2022 reports on cybercrime and ransomware","datePublished":"2022-11-24T15:00:52+00:00","dateModified":"2025-06-30T15:29:12+00:00","mainEntityOfPage":{"@id":"https:\/\/www.databack.fr\/en\/blog\/2022-reports-on-cybercrime-and-ransomware\/"},"wordCount":563,"publisher":{"@id":"https:\/\/www.databack.fr\/en\/#organization"},"image":{"@id":"https:\/\/www.databack.fr\/en\/blog\/2022-reports-on-cybercrime-and-ransomware\/#primaryimage"},"thumbnailUrl":"https:\/\/www.databack.fr\/wp-content\/uploads\/2022\/11\/ransomwares-bilan-2022.jpeg","articleSection":["BLOG","Ransomware incidents"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.databack.fr\/en\/blog\/2022-reports-on-cybercrime-and-ransomware\/","url":"https:\/\/www.databack.fr\/en\/blog\/2022-reports-on-cybercrime-and-ransomware\/","name":"Databack - 2022 report on cybercrime and ransomware","isPartOf":{"@id":"https:\/\/www.databack.fr\/en\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.databack.fr\/en\/blog\/2022-reports-on-cybercrime-and-ransomware\/#primaryimage"},"image":{"@id":"https:\/\/www.databack.fr\/en\/blog\/2022-reports-on-cybercrime-and-ransomware\/#primaryimage"},"thumbnailUrl":"https:\/\/www.databack.fr\/wp-content\/uploads\/2022\/11\/ransomwares-bilan-2022.jpeg","datePublished":"2022-11-24T15:00:52+00:00","dateModified":"2025-06-30T15:29:12+00:00","description":"Several reports provide an overview of cybercrime and threat trends for the year 2022.","breadcrumb":{"@id":"https:\/\/www.databack.fr\/en\/blog\/2022-reports-on-cybercrime-and-ransomware\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.databack.fr\/en\/blog\/2022-reports-on-cybercrime-and-ransomware\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.databack.fr\/en\/blog\/2022-reports-on-cybercrime-and-ransomware\/#primaryimage","url":"https:\/\/www.databack.fr\/wp-content\/uploads\/2022\/11\/ransomwares-bilan-2022.jpeg","contentUrl":"https:\/\/www.databack.fr\/wp-content\/uploads\/2022\/11\/ransomwares-bilan-2022.jpeg","width":600,"height":400},{"@type":"BreadcrumbList","@id":"https:\/\/www.databack.fr\/en\/blog\/2022-reports-on-cybercrime-and-ransomware\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"R\u00e9cup\u00e9ration de donn\u00e9es","item":"https:\/\/www.databack.fr\/en\/home\/"},{"@type":"ListItem","position":2,"name":"2022 reports on cybercrime and ransomware"}]},{"@type":"WebSite","@id":"https:\/\/www.databack.fr\/en\/#website","url":"https:\/\/www.databack.fr\/en\/","name":"Databack","description":"Laboratoire fran\u00e7ais de traitement de donn\u00e9es sensibles et volumineuses","publisher":{"@id":"https:\/\/www.databack.fr\/en\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.databack.fr\/en\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.databack.fr\/en\/#organization","name":"Datenabruf","url":"https:\/\/www.databack.fr\/en\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.databack.fr\/en\/#\/schema\/logo\/image\/","url":"https:\/\/www.databack.fr\/wp-content\/uploads\/2025\/06\/favicon.png","contentUrl":"https:\/\/www.databack.fr\/wp-content\/uploads\/2025\/06\/favicon.png","width":512,"height":512,"caption":"Datenabruf"},"image":{"@id":"https:\/\/www.databack.fr\/en\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.databack.fr\/en\/#\/schema\/person\/160c17ae25712502025ccd4cbdd63b44","name":"Benoit Jaunet","description":"Beno\u00eet Jaunet rejoint DATABACK en 2010 en tant que charg\u00e9 d\u2019affaires. Interlocuteur privil\u00e9gi\u00e9 des clients particuliers comme professionnels, il joue un r\u00f4le central dans l\u2019\u00e9valuation des situations de perte de donn\u00e9es, l\u2019orientation des demandes vers les \u00e9quipes techniques et le suivi des projets de r\u00e9cup\u00e9ration. Gr\u00e2ce \u00e0 une connaissance fine des contraintes m\u00e9tiers et des contextes techniques vari\u00e9s, il contribue au quotidien \u00e0 \u00e9tablir une relation de confiance avec les clients et \u00e0 garantir un accompagnement clair, r\u00e9actif et transparent tout au long du processus.","sameAs":["https:\/\/www.linkedin.com\/in\/benoit-jaunet-1604847a\/"]}]}},"authors":[{"term_id":146,"user_id":0,"is_guest":1,"slug":"benoit-jaunet-en","display_name":"Benoit Jaunet","avatar_url":"https:\/\/secure.gravatar.com\/avatar\/?s=96&d=mm&r=g","0":null,"1":"","2":"","3":"","4":"","5":"","6":"","7":"","8":""}],"_links":{"self":[{"href":"https:\/\/www.databack.fr\/en\/wp-json\/wp\/v2\/posts\/16587","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.databack.fr\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.databack.fr\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.databack.fr\/en\/wp-json\/wp\/v2\/users\/12"}],"replies":[{"embeddable":true,"href":"https:\/\/www.databack.fr\/en\/wp-json\/wp\/v2\/comments?post=16587"}],"version-history":[{"count":0,"href":"https:\/\/www.databack.fr\/en\/wp-json\/wp\/v2\/posts\/16587\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.databack.fr\/en\/wp-json\/wp\/v2\/media\/14672"}],"wp:attachment":[{"href":"https:\/\/www.databack.fr\/en\/wp-json\/wp\/v2\/media?parent=16587"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.databack.fr\/en\/wp-json\/wp\/v2\/categories?post=16587"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.databack.fr\/en\/wp-json\/wp\/v2\/tags?post=16587"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www.databack.fr\/en\/wp-json\/wp\/v2\/ppma_author?post=16587"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}