Cyberattacks and threats continue to break records, warns Check Point Research
- 70% year-on-year increase in cyberattacks on US organizations in May 2021, and 16% increase since beginning of year
- 97% year-on-year increase in cyberattacks on EMEA organizations in May 2021, and 21% increase since beginning of year
Check Point Research (CPR) warns of a further increase in cyberattacks and notes that more nation-state weapons are being leaked enabling potential hackers to carry out sophisticated attacks.
Check Point has long warned that organizations of all sizes are being bombarded by a global, fifth generation of cyber threats (Gen V). These are multi-vector cyber threats that can cause fatal damage and irreparable harm to the reputation of the compromised company. However, most companies are only secured against what we call third generation threats (Gen III), which are threats that we’ve known about since the early 2000s and which seek to exploit vulnerabilities in applications. Cybercrime is evolving at such a breakneck pace that falling behind on protection for weeks or months can have serious consequences, let alone when security is years out of date. It’s no wonder then that the pages of newspapers are filled with articles about victims of cyber attacks.
Researchers note the use of offensive cyber weapons to support national missions appears to have expanded. The problem is likely to be compounded by cyber superweapons being developed by major powers. In the real world, it can take months or years to prepare for a military conflict. In the online world, a ‘war‘ can be unleashed in seconds. A cyber superweapon is a piece of malware used against a nation-state causing it significant harm.
It is unfortunate that even small hacker groups have access to very dangerous threats, because sooner or later these strategic cyber weapons are leaked by the major powers. Moreover, threats and attacks are traded on the darknet for example, so the number of potential cybercriminals is even larger. Customized data, threats and attacks can be purchased, so amateurs can cause devastating damage for a few tens of dollars. Stopping the cyberattack pandemic will require cooperation between governments, cybersecurity companies as well as individual organizations.
In May 2021, US organizations saw an average of 671 weekly attacks, compared to 589 earlier this year. In EMEA, the weekly average of attacks per organization was 780 in May, compared to 643 at the start of the year, a 21% increase.
The comparison with May 2020 sounds even scarier. Year-over-year, there was a 70% increase in cyberattacks on US organizations, and a 97% increase in EMEA.
In the Americas, botnet attacks increased the most in May, up 26% compared to the beginning of this year. This was followed by infostealers (up 19%), banking Trojans (10%) and ransomware (9%). In EMEA, malware attacks on IoT devices (up 144%) and mobile attacks (up 41%) rocketed.
It is also interesting to compare attacks on individual industries. While the Americas saw the largest increases in attacks on carriers (up 51%), software (up 43%) and consulting companies (up 25%) in May, and the largest decreases in attacks on hardware manufacturers (down 69%) and education/research companies (down 22%); the EMEA region saw the third largest increase in attacks on hardware manufacturers (up 26%). Similar to the Americas, software vendors (up 64%) and utilities (up 46%) saw even bigger jumps. Interestingly attacks fell for enterprises in the healthcare sector (down 13%) and financial/banking (down 16%).
Threat detection alone has long been insufficient. Once an attack has penetrated a device or corporate network in any way, it’s too late. It is therefore essential to use advanced threat prevention solutions that stop even the most advanced attacks as well as zero-day and unknown threats.