Cybersecurity firm CrowdStrike released its 2020 Global Threat Report, which includes a list of findings on cybercrime activities. The report lists the different types of malicious software programs being used for such attacks, as well as which nations and industries are targeted most.
One notable finding from the report that IP companies may find useful is a trend towards malware-free cyber-attacks, meaning attacks that leverage code that executes from memory or stolen login credentials to gain access to sensitive information.
In 2019, malware-free attacks made up 51% of detected attacks. Whereas malware attacks aren’t difficult to intercept, malware-free attacks require more sophisticated behavioral analysis.
CrowdStrike observed an increase in incidents of ransomware, maturation of the tactics used, and increasing ransom demands from eCrime actors. Increasingly these actors have begun conducting data exfiltration, enabling the weaponization of sensitive data through threats of leaking embarrassing or proprietary information.
Another key trend in this year’s report is the telecommunications industry being targeted with increased frequency by threat actors, such as China and DPRK. CrowdStrike Intelligence assesses that various nations, particularly China, have interest in targeting this sector to steal intellectual property and competitive intelligence.
“This year’s report indicates a massive increase in eCrime behavior can easily disrupt business operations, with criminals employing tactics to leave organizations inoperable for large periods of time. It’s imperative that modern organizations employ a sophisticated security strategy that includes better detection and response and 24/7/365 managed threat hunting to pinpoint incidents and mitigate risks,” said Jennifer Ayers, vice president of OverWatch at CrowdStrike.
The full report can be found here.
Brands Protection News