The IT security company Check Point Software has published its malware trends report for the month of December. This month, the focus is on FunkSecs emergence, a new player in ransomware-as-a-service (RaaS) that leverages AI.

FunkSec: A new force in ransomware

FunkSec is at the forefront of double-extortion ransomware groups. In December 2024 alone, FunkSec announced 85 victims and has surpassed its competitors in volume. Check Point Research (CPR) however, has flagged many of these claims as recycled or unverified, raising doubts about the group's credibility.

FunkSec, which is linked to Algeria, appears to be driven by both financial gain and hacktivist ideologies. Their AI-based strategy points to the increasing use of advanced technology in cybercrime.

Advertisement

FakeUpdates: Globally Leading Malware

FakeUpdates regained the top spot globally among the most common malicious codes, affecting 5 percent of businesses globally. FakeUpdates also takes the top spot in Sweden with an impact of 5.82 percent of operations, followed by Androxgh0st (4.57 percent) and NJRat (1.11 percent).

FakeUpdates, also known as SocGholish, is a versatile downloader that launches additional malicious payloads. Androxgh0st is a botnet that continues to target sensitive data.

Warning from security experts

• The latest trends in cybercrime underscore the importance of vigilance and innovation in cybersecurity, says Fredrik Sandström, security expert, Check Point SoftwareAs AI-driven threats, among other things, gain a more prominent role, organizations must leverage advanced threat prevention measures to protect themselves against the changing landscape of sophisticated attacks.