Tag Archive for: Soared

Ransomware payments soared in 2023 to a new record says Chainalysis

/in


Ransomware attacks grew larger in scope and more complex last year, resulting in record high payments that defied the previous year’s lull.

A recent analysis from blockchain data platform Chainalysis found that in 2023 people paid $1.1 billion worth of cryptocurrency for ransomware payments, the highest sum since at least 2019, when it was a “mere” $220 million. The 2023 figures stand in contrast to 2022’s $567 million, which represented a sudden unexpected drop.

Chainalysis said this shows the previous year was more of an aberration than a new normal, fueled by geopolitical factors such as the Russian invasion of Ukraine. This conflict not only disrupted operations for certain actors, but the remaining ones shifted their focus from financial gain to politically motivated cyberattacks that steal information and wreak havoc. Other factors at play included a reluctance among western entities to pay ransoms to groups due to potential sanction risks, as some are linked to Russian intelligence agencies. There were also successful high-profile operations against the Hive ransomware network.

This was only a temporary lull, however, as ransomware attacks have since come roaring back. There were 538 new ransomware variants in 2023, pointing to the rise of new, independent groups. Ransoms have also been growing bigger; the analysis found that cybercriminals have increasingly preferred to go after a smaller number of higher value targets versus large numbers of low-value ones. This strategy, which is termed “big game hunting” in their world, had been growing more popular over the last few years and, over 2023, grew more popular still.

The report also pointed to the rise of, effectively, ransomware-as-a-service type networks where outsiders known as affiliates can access the malware to carry out attacks, and in exchange pay the strain’s core operators a cut of the ransom proceeds. This means a lower barrier to entry for less sophisticated players, which means a much greater quantity of attacks can be launched.

The analysis also noted the rise of what’s called Initial Access Brokers, who penetrate the networks of potential victims, then sell that access to ransomware attackers for as little…

Source…

Exploitation of Vulnerabilities Soared By 55% in 2022

/in


The number of vulnerabilities exploited in 2022 has grown by 55% compared to 2021, shows a new report by Palo Alto Networks’ Unit 42.

The Network Threat Trends Research Report, volume 2, also suggests Linux malware emerged as a growing concern last year, particularly since 90% of public cloud instances are running on Linux.

The report identifies botnets as the most prevalent type of Linux threat, accounting for 47% of attacks, followed by coin miners at 21% and backdoors at 11%.

ChatGPT scams saw a 910% increase in monthly domain registrations, pointing to an exponential growth in fraudulent activities taking advantage of the widespread usage and popularity of AI-powered chatbots.

Cryptominer traffic has also experienced a doubling in 2022, indicating a growing financial motive behind cybercriminal activities.

Read more on similar attacks: US Regulators Warn Banks About Cryptocurrency Security Risks

According to the latest Unit 42 report, threat actors increasingly leverage newly registered domains (NRDs) to carry out their attacks. Researchers discovered that individuals visiting adult websites were the primary target, accounting for 20.2% of cases, followed by financial services sites at 13.9%.

In addition, the manufacturing, utilities, and energy industries have witnessed a significant surge in malware attacks, particularly those targeting operational technology (OT). The report highlights a staggering 238% increase in malware attacks experienced by organizations within these sectors between 2021 and 2022.

To defend against these growing threats, organizations must prioritize proactive measures to identify vulnerabilities and educate individuals about safe online practices.

By leveraging the insights provided in the Unit 42 report, organizations can take the necessary steps to fortify their defenses and mitigate the risks posed by cyber threats in an ever-changing digital environment.

The report is based on global telemetry data from Palo Alto Networks Next-Generation Firewall (NGFW), Cortex Data Lake, Advanced URL Filtering and Advanced WildFire.

Source…

Data Breaches Soared by 70% In Q3 2022 in an Otherwise Dull Year

/in


After a period of lull in the first half of 2022, data breaches grew significantly in Q3 2022. According to findings by Surfshark, data breaches surged by 70% quarter-over-quarter, to 108.9 million accounts in Q3 2022.

The Q3 2022 numbers are almost as big as the number of accounts/emails breached in the first half of the year (64.36 million accounts breached in Q2 2022, 63.06 million in Q1 2022).

“Q3 of 2022 showed a 70% increase in breaches compared to Q2, and while this number is lower than last year, it’s still an increase,” Surfshark noted.

Russians continued to be the top most breached people in Q3 2022 (22.28 million) after dethroning the U.S. (which had been the most breached country for a few years) in Q1 this year, corresponding to the conflict in Ukraine. However, their contribution to the list of data breaches continued to decline (24.59 million in Q2 2022, 42.99 million in Q1 2022).

Interestingly, the difference between Russian account breaches and the second-most breached country (the U.S. in Q1 and France in Q2 and Q3) also declined in Q3 2022, as the graphs below suggest. Additionally, more countries suffered a higher number of data breaches in Q3 2022 compared to the previous two quarters of 2022.

Data Breaches by Country, Q1, Q2, Q3, 2022

Data Breaches by Country for Q1, Q2 and Q3 2022 | Data Collated from Surfshark

See More: Cybersecurity Awareness Month: Eight Security Insights That You Should Know

Though Russia suffered the highest number of breached accounts, France registered the highest breach density (the breach count of a country per its population) of 212 leaked accounts per 1,000 people, followed by Russia at 153. France also saw a 1,710% increase in data breaches, surpassed only by Chile (1,852%), Bolivia (1,913%) and Zambia (3,886%). Overall, the global breach density stands at 14 accounts for every 1,000 people.

Region-wise, Europe was still the most affected, suffering half of the total data breaches in Q3 2022, followed by Asia, North America, South America, Africa, and Oceania. Surfshark assessed that 40% of the attacks in European breaches came from Russia.

“Looking at the big picture, 2022 seems like a promising year. The number of breached accounts…

Source…

Bluetooth Key Installations Soared by 244%

/in


DUBLIN, June 1, 2021 /PRNewswire/ — The “China Digital Vehicle Key Industry Report, 2020” report has been added to ResearchAndMarkets.com’s offering.

Bluetooth Key Installations Soared by 244% in the First Seven Months of 2020

Our Digital Vehicle Key Industry Report, 2020 sorts out current digital key solutions and development trends.

In an era of intelligent vehicles, key is a new digital trait and has been not like what it used to be. Terminals like smartphones, smart watches and smart bracelets become carriers of vehicle keys, making people’s lives more convenient and creating more room for digital car life.

Key Trends

The less than 5% installation leaves space for rapid adoption

Digital key has three technology routes: Bluetooth Low Energy (BLE), Near Field Communication (NFC) and Ultra-wideband (UWB). Yet the overall installation is below 5%. Among them Bluetooth key finds broader application.

In the first seven months of 2020, Bluetooth key was mounted on roughly 220,000 passenger cars in China, a like-for-like spurt of 244%, with an installation rate of 3.3%, 1.6 percentage points higher than that in the prior-year period. Despite low installation in both volume and rate, Bluetooth key is roaring ahead.

Apart from car lock/unlock and start-up capabilities, digital key enables personalized settings (e.g., seats, music and ID account), key sharing, vehicle trajectory record, and delivery to car. In future digital key will be an individualized element for cars and arouse much imagination.

Digital key is so beloved by Chinese automakers

In China, local automakers more willingly embrace digital key. In Bluetooth key’s case, there were a total of 14 passenger car brands using such a key in China between January and July in 2020, including 10 homegrown ones with a combined 70% share in installation.

In 2014, BYD first introduced smartphone Bluetooth-based digital key which can lock and unlock cars without network. GAC NE, Xiaopeng Motors, Geely and Changan Automobile followed and rolled out Bluetooth or NFC-based key.

  • In April 2019, GAC NE unveiled its Bluetooth key-enabled car models – AION.LX and AION.S. The key solution is co-developed by GAC NE and Shanghai InGeek Cyber Security…

Source…