E-crime attacks 79% of hand-on intrusions in 2020: report
CrowdStrike Inc. has announced the release of the 2021 CrowdStrike Global Threat Report, detailing findings that suggest supply chain attacks, ransomware, data extortion and nation-state threats prove to be more prolific than ever. On the heels of unprecedented growth in e-crime, CrowdStrike has introduced a new eCrime index (ECX) in this year’s report. The ECX displays the strength, volume and sophistication of the cybercriminal market, and is updated weekly in real time based on 18 indicators of criminal activity.
The 2021 Global Threat Report highlights that e-crime attacks made up 79% of all intrusions (via hands-on-keyboard activity) uncovered by CrowdStrike Falcon OverWatch, the organisation’s team of threat hunters. Among a popular vector for cybercriminals is the supply chain as it allows malicious actors to propagate multiple downstream targets from a single intrusion. Additionally, the report spotlights how nation-state adversaries infiltrated networks to steal valuable data seeking COVID-19 vaccine research, whereby threat actors have improved strategies to evade detection and camouflage in networks, many times deceiving their targets.
“There is a human being behind every attack, and cyber actors are getting bolder and more astute day to day,” said Adam Meyers, senior vice president of intelligence at CrowdStrike. “As such, it’s critical to employ comprehensive cloud-native technology for increased visibility and prevention capabilities including threat intelligence and expert threat hunting to stay one step ahead of modern day attacks. Additionally, today’s rapidly changing remote work environment highlights that identity protection is central to the defence of any enterprise’s infrastructure. Organisations must take decisive action to control access and protect data in order to outmanoeuvre adversaries.”
Other key findings from the 2021 Global Threat Report include:
- The healthcare industry will continue to face significant threats from criminal groups as CrowdStrike Intelligence confirmed 18 Big Game Hunting enterprise ransomware families infected 104 healthcare organisations in 2020.
- Adversaries from the Democratic People’s Republic of Korea (DPRK) will be motivated to enhance cyber operations in 2021 due to COVID-19 and a resulting food shortage.
- Data extortion techniques will continue to accelerate through the introduction of dedicated leak sites (DLS).
- China will focus on supply chain compromises and the targeting of key western verticals in support of the 14th Five Year Plan and the COVID-19 vaccine including academic, health care, technology, manufacturing and aerospace.
The 2021 CrowdStrike Global Threat Report can be found here.
After investing in product and production security, the company has received both IEC 62443-4-1...
All nine vulnerabilities have received the highest CVSS criticality score of 10.
Amazon Web Services will provide cloud services and expertise to assist the university's...