India, Dec. 16 -- Makop ransomware attacks in India have increased sharply, according to a new study that highlights a shift in both geographic focus and technical approach. The findings show that 55 percent of identified victims are based in India, pointing to a deliberate strategy that targets organisations with weaker security controls and exposed remote access systems.

The campaign reflects how ransomware groups continue to succeed by exploiting basic security gaps rather than relying solely on advanced techniques.

Makop, first observed around 2020 and linked to the Phobos ransomware family, has altered how it is deployed. The study documents the first known use of Guloader to distribute Makop, marking a change from its traditional ...