Security News > 2021 > March > Cybercriminals innovate to find vulnerabilities that can be monetized

Cybercriminals innovate to find vulnerabilities that can be monetized
2021-03-04 05:00

Overall unique threats in the wild increased two folds from 389 in 2019 to 600 unique threats in 2020.

The financial sector is the most proactive and concerned with cyber threats, running 39% of the total assessments performed, and the technology sector is the second most security conscious.

Top threats that companies were most at risk from include a CSP Bypass Vulnerability in Google Chrome, AnarchyGrabber Discord malware, Jigsaw ransomware dropped by Lokibot, malware authors tricking Apple into trusting malicious Shlayer apps and Doki infecting Docker servers in the cloud.

"Cybercrime is an established industry driven by innovation to find vulnerabilities that can be monetized. The high-risk threats from the report are those that had the highest impact which is one of the metrics used in calculating risk. Looking forward, we see that state-sponsored cybercrime is leading the way with immense resources and talent. In 2021 we expect more attacks to leverage supply chain techniques that make use of the tools and tactics discovered in the SolarWinds breach," said Avihai Ben-Yossef, CTO, Cymulate.

Web attack vector utilization and validation grew YoY by 37% and email vector assessments by 23%. "The threat landscape does not stand still, and regular weekly or daily assessments play a critical role in addressing practically daily threat evolutions and a company's resilience to new immediate threats," said Eyal Wachsman, CEO, Cymulate.

"In 2020 we saw more concern for, and lack of security for MAC threats compared to the previous year alongside Covid-themed threats. We anticipate 2021 to see an even greater increase in both these areas as people remain working from home."


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/ePvsDpMuBb4/