During this week, we did not see a large amount of smaller variants released compared to what we have historically seen. This is because ransomware has moved towards large network-wide breaches by variants such SamSam, BitPaymer, and Dharma over publicly exposed remote desktop services.  […]

from https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-september-28th-2018-rdp-and-gandcrab/