Security News > 2024 > March > Major shifts in identity, ransomware, and critical infrastructure threat trends
In this Help Net Security video, Michelle Alvarez, Strategic Threat Analysis Manager at IBM X-Force, discusses the 2024 X-Force Threat Intelligence Index, revealing top threats and trends the team observed last year across its global engagements and how these shifts are forming the threat landscape in 2024 and beyond.
X-Force observed shifts toward credential-driven attacks with a 71% increase in attacks caused by using valid accounts.
X-Force observed a 12% drop in ransomware attacks on enterprises, signaling a business model shift by operators who were seen pivoting to infostealer malware as businesses opt to rebuild vs. paying ransom to decrypt.
Nearly 70% of attacks targeted critical infrastructure in 2023, reaffirming these sectors' position as high-value targets to cybercriminals.
About 85% of attacks on these sectors could've been mitigated with security fundamentals.
X-Force analysis suggests there is a lack of incentives by threat actors to invest in attacking the genAI models themselves.
News URL
https://www.helpnetsecurity.com/2024/03/07/2024-x-force-threat-intelligence-index-video/
Related news
- Microsoft Identifies Storm-0501 as Major Threat in Hybrid Cloud Ransomware Attacks (source)
- CISA: Network switch RCE flaw impacts critical infrastructure (source)
- Akira and Fog ransomware now exploit critical Veeam RCE flaw (source)
- Critical Veeam Vulnerability Exploited to Spread Akira and Fog Ransomware (source)
- Volkswagen monitoring data dump threat from 8Base ransomware crew (source)
- Iranian hackers act as brokers selling critical infrastructure access (source)
- U.S. and Allies Warn of Iranian Cyberattacks on Critical Infrastructure in Year-Long Campaign (source)
- Critical Veeam RCE bug now used in Frag ransomware attacks (source)