Based mostly on a Palo Alto Networks analysis of victims between mid-2023 to mid-2024 the manufacturing sector was most impacted, adopted by transportation and logistics, wholesale and retail, insurance coverage, pharma, and healthcare.
APT and cybercriminal techniques are often incompatible
The combination of cyberespionage and ransomware actions will not be unprecedented, however it’s a uncommon incidence as a result of these operations sometimes have competing targets that require totally different approaches. The objective of cyber espionage is intelligence assortment, so remaining undetected within the sufferer’s community for so long as attainable is a precedence. In the meantime, the information encryption a part of ransomware assaults is extremely seen, instantly making a gift of the attacker’s presence.
Nevertheless, there have been cases the place intelligence businesses have contracted, or pressured, non-public hackers to do their bidding in trade for cover from prosecution or different privileges. This has resulted in circumstances the place some risk teams appeared to have interaction in each cyberespionage and monetary crimes on the identical time. And though these operations have been stored separate, there was an inevitable overlap of toolsets and techniques.
