The report summarizes ransomware-related statistics for April 2026 using Dedicated Leak Sites and AhnLab-detected damaged systems, while noting that comparisons with pre-December 2025 business-target data should be made cautiously. It highlights attacks on critical industries such as Manufacturing, Healthcare, and Finance, and tracks major groups including Qilin, The DragonFoece, and INC Ransom. #Qilin #TheDragonFoece #INC Ransom #AhnLab TIP
Keypoints
- The report covers ransomware statistics for April 2026, including Sample Quantity and Damage System Quantity.
- Statistics are based on AhnLab detection names and ATIP infrastructure data collected from ransomware group DLS disclosures.
- Comparisons with business-target statistics from before December 2025 require caution due to a methodology change.
- Attacks in April 2026 affected a wide range of industries worldwide, with critical infrastructure sectors standing out.
- Manufacturing, Healthcare, and Finance were especially prominent targets during the month.
- The report tracks trends for major ransomware groups such as Qilin, The DragonFoece, and INC Ransom.
- It also includes damage trends by industry and region, plus emerging threat trends.
MITRE Techniques
- [T1589.002] Gather Victim Identity Information: Financial Information β Threat groups focused on targeted businesses and industries, implying collection of victim details for selection and extortion (βtargeting critical infrastructure facilities such as Manufacturing, Healthcare, and Finance stood outβ).
- [T1657] Financial Theft / Extortion β Ransomware operations centered on damage reporting and DLS disclosure, consistent with extortion pressure on victims (βransomware-related statistics based on Dedicated Leak Sites (DLS)β).
Indicators of Compromise
- [Threat actor names] Major ransomware groups tracked in the report β Qilin, The DragonFoece, and INC Ransom
- [Data source / infrastructure] Ransomware PR sites/pages used for disclosure β Dedicated Leak Sites (DLS), ATIP infrastructure
- [Time period] Reporting window for the statistics β April 2026, December 2025
Read more: https://asec.ahnlab.com/en/93657/