A new report from Nuspire shows a significant increase in threat activity in the second quarter of 2022.
Nuspire, a managed security services provider, has published its Q2 2022 Quarterly Threat Report. This report contains data on recent cybercriminal activity and new methods, procedures and tactics (TTP).
Nuspire’s data showed a dramatic rise in malware, botnet, and exploit activity. The number of malware events went up more than 25% from the previous quarter, botnets increased by 100%, and exploit activity jumped nearly 150%. This was partly due to bad actors taking advantage of the Log4j security flaw.
JR Cunningham, the chief security officer at Nuspire, stated that they witnessed a stunning escalation of threat activity in the second quarter. He continued by saying that while it’s not surprising given the increased attack opportunities like remote work, it’s still a worrying development and one we cannot ignore.
“In the age of advanced threats, attackers have always sought the most efficient approach to profit from their victims, and because simple assaults like phishing still function, it’s obvious that businesses must strengthen their fundamental security procedures such as patching and user education.”
“Organisations must constantly review their security programs to protect against an ongoing stream of potentially severe disruptive threats,” he says.
Among the many highlights from Nuspire’s Q2 2022 Threat Report are as follows:
- VBA activity has ranked highly for the past year but decreased significantly last quarter, as Microsoft will now block them by default.
- Around the end of Q2, a significant botnet activity was observed. Torpig Mebroot is a banking trojan that targets and scrapes data from infected machines to gather payment card and transaction information. Torpig Mebroot is challenging to detect and remove since it attacks the host machine’s master boot record.
- The manufacturing industry is the most attacked globally. In the second quarter, our data showed that LockBit ransomware and Dynamite Panda (APT18) were two of the most prevalent threats to the manufacturing industry.
“Organisations continue to struggle to balance the need to defend against a barrage of dangers with the requirement for employees to manage digital sovereignty obligations properly,” according to IDC’s Craig Robinson.
“This is why we’re seeing the market become more receptive to increasing and improving internal security training. Employing these two strategies alone doesn’t eliminate the vulnerability,” explains Cunningham, adding that “using them in tandem with tools like multi-factor authentication and endpoint detection, as well as services like MDR, can significantly enhance an organisation’s security posture.”
It’s clear that cybercriminals are becoming more sophisticated and their methods more destructive. Organisations must continuously review and update their security programs to protect against ever-evolving threats.
Nuspire’s Quarterly Threat Report is a valuable resource for understanding the latest trends in cybercrime and identifying potential threats to your organisation. Be sure to download the full report for more detailed information.
More Stories
Killnet and AnonymousSudan Collaborate to Launch Cyber Attacks on Western Organisations
In recent news, it has been reported that two Russia-sympathetic hacktivist groups, Killnet and AnonymousSudan, have allegedly launched a series...
$4000 Gone In An Instant: Mother Defrauded in Facebook Marketplace Car Deal
A mother of four is warning others to be cautious after believing she had purchased a safe and dependable car...
Shocking Scam: Sydney Family Loses $200K Life-Savings in Suncorp Spoofing Fraud
A family from Sydney has lost their life savings worth $200,000 due to a fraudulent scam. Peter and Madison, who...
Mysterious Money Transfer Leaves Couple Speechless: How They Got an Unsolicited $4000
A young couple in Melbourne claims their bank is making up a personal loan they do not understand. Ashley and...
Phishing + AI + Voice Cloning= Big Trouble: The New Way Criminals are Stealing Your Money
New Alert: Criminals use AI and voice cloning to trick you out of your money. Earlier this year, Microsoft unveiled...
‘Impossible to Spot’ Delivery Scam Email Targets Australia Post Customers – Don’t Fall Victim!
Unsuspecting shoppers should be cautious as a parcel delivery scam that is hard to distinguish targets Australia Post customers. Email...