Cybercriminals stayed busy this week, with 190 ransomware incidents tracked globally, roughly on par with recent weeks.
Biggest players
Qilin remained the most active group, responsible for the largest share of attacks.
The Gentelman continued to climb quickly, outpacing older groups like LockBit in victim count.
Other steady contributors included NightSpire, Akira,DragonForce, and Play News, showing the ecosystem is still crowded andcompetitive.
Key trend
There was a pronounced spike in activity on February 19,with about 50 attacks in a single day, that’s one-quarter of the week’s total, likely tied to coordinated leak disclosures or attack cycles.
Affected Regions
The United States absorbed almost half of all knownincidents, reflecting its continued appeal as a high-impact target.
Other countries like Canada, Italy, and the U.K. alsoappeared in the data, showing that ransomware remains a global problem.
Victims ranged from consulting and financial services tomanufacturing and essential service providers, underlining that attackers aren’t picky about industry.
Conclusion
The ransomware landscape this week was active and evolving, big established groups like Qilin are still dominant, while newer players are quickly gaining ground. Mid-week surges remind defenders that threat activity isn’t evenly distributed and can come in waves. Staying vigilant, tracking emerging actors and preparing for data leak extortion remain crucial defensive priorities.
.png)
.png)