Q2 2024 Threat Landscape Report>
Kroll – Keith Wojcieszek
This report from Kroll discusses cybersecurity trends in Q2 2024:
1) Key targets and trends:
– Education sector was a major target, especially for ransomware
– Professional services remained the most targeted industry
– Healthcare saw increased attacks
2) Attack methods:
– 7% increase in unauthorized access incidents
– Cloud services increasingly targeted as entry points
– Ransomware attacks increased by 2%
3) Specific threats:
– FOG ransomware targeted higher education
– SCATTERED SPIDER group focused on social engineering and cloud access
– Increase in INCRANSOM, MEDUSA, and FOG ransomware activity
4) Attack vectors:
– Phishing declined, but exploitation of external remote services and vulnerabilities increased
– Valid account compromise remained a significant issue
5) Malware trends:
– Shift in malware ecosystems due to law enforcement actions
– Rise in information stealers and commodity malware
– New techniques observed, such as CLEARFAKE and IDATLOADER
6) Recommendations:
– Implement multi-factor authentication
– Use privileged access management
– Monitor for suspicious activities in cloud environments
– Implement robust patch management
7) Overall assessment:
– Threat landscape remains varied and sophisticated
– Cloud and SaaS applications are key targets
– Organizations need multi-layered security approaches and long-term partnerships with security experts
The report emphasizes the need for organizations to stay vigilant and adapt their cybersecurity strategies to address evolving threats across various sectors.
Link: https://www.kroll.com/en/insights/publications/cyber/threat-intelligence-reports/q2-2024-threat-landscape-report-threat-actors-ransomware-cloud-risks-accelerate