Top Cyberattacks Revealed in New Threat Intelligence Report

We acknowledge that in at the moment’s world, safety leaders should increase their focus past applied sciences and their vulnerabilities. To successfully handle threat, safety leaders should regularly analyze the worldwide menace panorama and perceive how enterprise selections can affect their group’s menace profile. Similarly, enterprise leaders require consciousness of their safety posture, threat publicity, and cyber-defense technique that may have an effect on enterprise operations.

Through the “BlackBerry Global Threat Intelligence Report,” fashionable leaders can have well timed entry to this essential info. Based on the telemetry obtained from our personal synthetic intelligence (AI)-driven merchandise and analytical capabilities, and complemented by different private and non-private intelligence sources, our international BlackBerry Threat Research and Intelligence group gives actionable intelligence about assaults, menace actors, and campaigns to be able to make well-informed selections and take immediate, efficient actions.

This is exactly what we’ve got labored to distill into the concise quarterly report that I’m happy to launch publicly at the moment. To create this new “Global Threat Intelligence Report,” the group analyzed greater than 1.5 million stopped cyberattacks, occurring between Dec. 1, 2022, and Feb. 28, 2023. Below are a few of the highlights.

Key Report Highlights

• 90 days by the numbers: From December 2022 to February 2023, we noticed as much as 12 assaults per minute, and the variety of distinctive assaults utilizing new malware samples skyrocketed by 50%— from one per minute within the earlier report back to 1.5 per minute throughout this reporting interval.
• Top 10 nations experiencing cyberattacks throughout this era: The US stays the nation with the very best variety of stopped assaults. However, the menace panorama has modified, and Brazil has simply emerged because the second most-targeted nation, adopted by Canada and Japan. Singapore entered the highest 10 for the primary time.
• Most focused industries by variety of assaults: According to BlackBerry telemetry, 60% of all malware-based cyberattacks focused clients within the monetary sector, healthcare providers, and meals and staples retailing industries.
• Most frequent weapons: Droppers, downloaders, distant entry instruments (RATs), and ransomware have been most steadily used. During the info assortment interval, BlackBerry noticed: a focused assault utilizing Warzone RAT in opposition to a Taiwanese semiconductor producer; cybercriminal teams utilizing Agent Tesla and RedLine Infostealer; and widened use of BlackCat ransomware.
• Industry-specific assaults: The healthcare business confronted a big variety of cyberattacks throughout this durations. Additionally, this report dives deep into assaults in opposition to monetary establishments, authorities entities, manufacturing, and demanding infrastructure, key sectors which are typically focused by subtle and generally state-sponsored menace actors, partaking in espionage and mental property campaigns. However, as we reveal on this report, crimeware and commodity malware are additionally typically present in these essential industries

The report additionally covers notable menace actors and cyber weapons, most consequential assaults, and — most significantly — it additionally gives actionable defensive countermeasures, within the type of MITRE ATT&CK® and MITRE D3FEND™ mappings deployed throughout this era. Finally, we provide an evaluation of the forecasting accuracy of our earlier report, and an inventory of insightful key takeaways primarily based on the occasions of the previous months.

We hope that you’ll worth all of the detailed and actionable information introduced on this new report. Once once more, I wish to specific my gratitude to the authors, the extremely expert international researchers on the BlackBerry Threat Research and Intelligence group. Their ongoing efforts to supply cutting-edge analysis empower us to repeatedly enhance BlackBerry’s data- and Cylance® AI-driven services.

To study extra, obtain the “Global Threat Intelligence Report.”

About the Author

Ismael Valenzuela is VP of Threat Research & Intelligence at BlackBerry, the place he leads menace analysis, intelligence, and defensive innovation. Ismael has participated as a safety skilled in initiatives throughout the globe for over 20+ years, and founding father of one of many first IT safety consultancies in Spain.

A cybersecurity skilled with robust technical background and deep data of penetration testing, safety architectures, intrusion detection, and pc forensics. Ismael has offered safety consultancy, and steerage to massive authorities and personal organizations, together with main EU establishments and US authorities companies.