Global Threat Intelligence Report
Growing attack surface and threat complexity mixed with reduced staffing and budgets is creating a perfect storm for security professionals
Key Insights from the 2024 Report
In 2023, we witnessed ransomware payments reach an all-time high of over $1 billion after a decline in 2022.
Malware continues to evolve to gain initial access, evade detection, and maintain persistence.
Top Attacked Sectors
Manufacturing, technology, and transport & distribution remained in the top 5 as we continue to see attacks against critical infrastructure and supply chains prioritized by adversaries and facing significant risk.
Ransomware Telemetry
United States and Manufacturing companies top the charts. Lockbit claimed the most victims for the second year in a row. We continue to see small and medium-sized businesses (SMBs) face significant risk, with over 50% of victims having less than 200 employees.
Malware Telemetry
Malware continues to evolve to gain initial access, evade detection, and maintain persistence. The modularization of malware, and the increase in adversaries living off the land, highlights the need for organizations to have more comprehensive protections in place.
Vulnerability Intelligence
Organizations should leverage these insights to assess vendors and limit what is allowed within their environments. Many of the most popular vendors by market share and reputation are also among the highest in announced Common Vulnerabilities and Exposures (CVE) each year.
Exploitation Insights
Last year, we highlighted the rapid integration of exploit code by malware and botnets for high-severity vulnerabilities, often aided by generative AI. We observed threat actors leveraging critical 0days for substantial gains in 2023, aligning with platforms targeted by vendors with the highest CVE volume.
Know the threats. Protect your business.
The cybersecurity landscape is rapidly evolving while security resources remain stagnant or decline, leaving organizations vulnerable to routine threats like exploitation, malware, and escalating ransomware and extortion incidents. Manufacturing suffers the most attacks, while Trojans persist as significant threats. Proactive security measures are urgently needed to counter these challenges.
Most Recent Data & Trends by Sector
Q1 updates
Vulnerabilities
Discover the critical security insights from Q1, including the top vendor CVEs, significant browser vulnerabilities, and a detailed analysis of the most exploited operating systems and vendors. Stay informed and protect your systems with this essential knowledge.
Download Vulnerabilities UpdateMalware
Download this comprehensive infographic to gain valuable insights into the malware landscape of Q1. Dive deep into detailed information on file types, trending malware, and their severity levels. Additionally, discover noteworthy malware campaigns that have significantly impacted the cybersecurity landscape.
Download Malware UpdateRansomware
Download our detailed infographic from Q1 to uncover the top ransomware threats, victim locations, and data disclosure incidents. See how sectors like manufacturing remain at the forefront of these attacks, and gain key insights to enhance your cybersecurity strategy.
Download Ransomware UpdateHow to Build a Resilient Cybersecurity Strategy for MSPs
In today's rapidly evolving threat landscape, MSPs are on the front lines of cybersecurity. As threats become more sophisticated, MSPs need more than just reactive measures — they require a proactive and resilient cybersecurity strategy to safeguard their clients and grow their business.
MSP Blueprint: Proactive Threat Hunting with XDR for Enhanced Cybersecurity
This article explores how Managed Service Providers (MSPs) can leverage Extended Detection and Response (XDR) to enhance proactive cyber threat hunting. It highlights the evolution of threat detection, the importance of logging and threat intelligence, and the role of automation in securing both MSP and client systems.
The Importance of XDR for Regulatory Compliance
The SEC's 2024 cybersecurity disclosure rules mandate public companies to disclose incidents and detail their risk management strategies. Even non-public companies must adhere with regulations, such as PCI DSS, HIPAA, and GDPR. Implementing robust cybersecurity like Extended Threat Detection and Response (XDR) is essential for compliance and protecting sensitive data.
Samurai Threat Intelligence - what is it and how our customers get value
Threat intelligence is a critical component of any cybersecurity approach, it assists in identifying and tackling existing and new waves of cyber threats. But not all threat intelligence is created equal.