Cyber-threat actors are evolving their tactics to target key industries, operating with the efficiency of businesses, according to a recent report by Darktrace.
The study focused on analyzing attack data within the energy, healthcare, and retail sectors in 2022, revealing that threat actors are customizing their strategies to specific industries based on effectiveness and cost-efficiency.
Toby Lewis, global head of threat analysis at Darktrace, highlighted that cyber-threat actors are adopting a business mindset, constantly seeking ways to enhance their hacking capabilities and target more organizations with fewer resources. This approach leads to a continuous evolution of tactics, making it challenging for cybersecurity teams to predict and prevent attacks.
Crypto-mining in the Energy Sector:
The energy sector witnessed a significant increase in crypto-mining threats in 2022, with UK energy firms experiencing a 13-times surge in high-priority crypto-mining incidents compared to the previous year. In the US, this type of threat was three times more prevalent. Crypto-mining involves bad actors stealing energy and processing power from networks, posing a serious risk to organizations. While often overlooked, crypto-mining can slow down systems, disrupt productivity, and serve as a gateway for more severe attacks like ransomware.
Lewis emphasized the importance of addressing crypto-jacking as part of an organization’s overall security strategy, as neglecting such threats can leave networks vulnerable to further exploitation. Additionally, the report highlighted how crypto-mining activities contribute to the funding of cybercrime groups, fueling global cyber threats.
Attacks on Online Accounts in Retail:
In the retail sector, cyber-criminals increasingly targeted online accounts in 2022, taking advantage of the surge in online shopping post-COVID. Credential theft, spoofing, and stuffing saw a significant increase in cyber incidents in the US, Australia, and the UK. This trend underscores the need for robust authentication processes to safeguard online shopping accounts and prevent unauthorized access.
Lewis stressed the importance of implementing stronger authentication measures to combat credential theft and ensure that only trusted users can access systems, emphasizing that traditional username and password combinations are no longer sufficient barriers to cyber threats.
Healthcare a Major Target for Data Exfiltration:
Healthcare organizations have been prime targets for ransomware attacks due to the sensitive patient data they hold and the potential disruption caused by system shutdowns. The report noted a rise in data exfiltration threats targeting the UK and Australian healthcare sectors in 2022, highlighting the vulnerability of these organizations to cyber threats. While the US saw a decline in data exfiltration attacks, it remained a prevalent threat in the sector.
Lewis underscored the sector-specific challenges faced by healthcare organizations, from the risk of data exfiltration due to the valuable nature of patient information to the devastating impact of ransomware attacks on hospital operations.
In conclusion, the Darktrace report sheds light on the evolving tactics of cyber-threat actors across key industries, emphasizing the need for organizations to prioritize cybersecurity measures and adapt to the changing threat landscape. By understanding industry-specific challenges and implementing proactive security measures, businesses can better protect themselves against cyber threats in an increasingly digital world.