Billions of personal records were stolen in 2018, unearthed in breaches that successfully targeted household names in government, technology, healthcare, travel and hospitality. Compounding the problem has been increased geopolitical tension between western democracies and countries like Russia, China and North Korea.
Modern cyberattacks appear to increasingly be fueled by geopolitical tension and reveal how clever attackers have become in evolving to remain undetected — using techniques such as lateral movement, island hopping and counter incident response to stay invisible, according to Carbon Black.
Key findings
The top five industries targeted by cyberattacks in 2018, according to Carbon Black’s global threat data, were: Computers/Electronics, Healthcare, Business Services, Internet/Software, and Manufacturing
As 2018 came to a close, CB TAU saw several cyberattacks targeting global governments that included indicators of compromise attributable to North Korea
Approximately $1.8 billion of cryptocurrency related thefts occurred in 2018
Nearly 60% of attacks now involve lateral movement
Half of incident response engagements now involve instances of counter incident response
Half of cyberattacks today use the victim primarily for island hopping
IR firms are encountering destructive attacks during 32% of investigations.