Threat Actors Are Innovating to Find Critical Vulnerabilities to Drive More Monetization

17
Threat Actors Are Innovating to Find Critical Vulnerabilities to Drive More Monetization-01

The state-sponsored cybercrime will lead the way with immense talent and resources. In 2021 the security professionals expect more cyber-attacks to power supply chain techniques, reveals a recent study.

Cybercrime today is an established business, driven by innovation to help find vulnerabilities which can be monetized well. The high-risk cyber threats from the technology marketplace are those that had the highest impact. This is one of the prime metrics used for calculating IT risks.

The widespread pandemic had a drastic influence on the cyber-security landscape in 2020. There has been a significant uplift in awareness of phishing attacks spanning all industries. Today, many employees improved their high-risk score from 66.3 in 2019 to a new figure of 18.1 in 2020 – on a scale of 0-100, reveals a recent Cymulate research study.

Also Read: Healthcare Data Breaches Increased Rapidly In the Pandemic Era

The report highlights the 2020 security landscape and its effect on security teams globally. Some of the principal highlights from the study are –

  • The unique threats overall has increased two folds – from 389 in 2019 to 600 distinctive threats in 2020
  • The healthcare sector remains most at risk, especially through web the gateways. Here, phishing attack is still a high-risk vector.
  • The financial firms are the most proactive and concerned with cyber-attacks, running about 39% of the total assessments performed. The technology industry is the next most security conscious.
  • The web application attack vectors are dangerous at 39.6, followed by web gateway (web browsing) at 33.9 – this is on a scale of 0-100.
  • Web attack vector validation and utilization developed YOY by 37% and the email vector assessments by almost 23%.

The top cyber threats that businesses were most at risk from involves –

  1. CSP bypass vulnerability within Google Chrome,
  2. Jigsaw ransomware dropped by Lokibot,
  3. AnarchyGrabber Discord malware,
  4. Doki infecting Docker servers in the cloud,
  5. Malware authors tricking Apple into the trusting malicious Shlayer applications.

As we advance, the world is expecting to see that state-sponsored cybercrime will lead the way with immense talent and resources. In 2021 the security professionals expect more cyber-attacks to power supply chain applications. This is to make use of the tools and strategies revealed in the SolarWinds data breach.

Also Read: Managing Identities and Entitlements to Mitigate Cloud Security Risks

The cyber threat ecosystem is not stationary. Industry experts believe regular / weekly / daily assessments could play a critical role while addressing the daily threat evolutions practically. It also helps in an organization’s resilience toward advanced, new cyber-attacks.

To conclude, Eyal Wachsman, CEO at Cymulate mentioned in the report – “In 2020 we saw more concern for, and lack of security for MAC threats compared to the previous year alongside Covid-themed threats. We anticipate 2021 to see an even greater increase in both these areas as people remain working from home.”

For more such updates follow us on Google News ITsecuritywire News.