The Orange Cyberdefense (OCD) Security Navigator 2024 report highlights the top threat faced by organizations worldwide in 2023 [3], which is cyber extortion [1] [3] [4] [5] [7]. It also discusses the emergence of hacktivist groups and the increase in hacking incidents. This article aims to present the information in a more grammatically correct, logical [1], authoritative, and formal style.
Description
According to the Security Navigator 2024 report from Orange Cyberdefense, cyber extortion was identified as the primary threat faced by organizations globally in 2023, with a 46% increase compared to the previous year [3]. The manufacturing sector was the most targeted industry [3], accounting for 20% of all cyber extortion attacks [6]. The report also highlights the rise of hacktivist groups [3], with Anonymous Sudan being identified as a prominent group involved in attacks against Sweden and Denmark.
The report reveals a 30% increase in events processed by the Threat Detection teams [1] [4] [5] [7], with hacking being the most prominent threat action [4] [5] [7]. Large enterprises were the primary targets for cyber extortion attacks worldwide [5]. The United States [1] [2] [4] [7], United Kingdom [1] [2] [4] [7], and Canada had the highest number of victims [1] [2] [4] [7], but there was also a noticeable increase in victims in India [7], Oceania [1] [2] [3] [7], and Africa [1] [2] [3] [7].
Hacktivist attacks [4] [7], particularly those related to the war against Ukraine [7], have been on the rise. Europe was the most impacted region [4] [7], followed by North America and the Middle East [4] [7]. The report emphasizes the evolution of “cognitive” attacks that aim to shape societal perception [4] [7]. The majority of hacktivist attacks observed were Distributed-Denial-of-Service (DDoS) attacks [7].
The report provides insights into the types of security incidents detected [7], the origin of incidents within organizations [7], and the correlation between client feedback and detection efficiency [7]. It also highlights the need for organizations to understand the threat landscape and take proactive measures to reduce their risk of exposure [7].
The Security Navigator 2024 report reveals that the number of confirmed security incidents has decreased by 14% compared to the previous year. Retail trade and professional [4] [5] [7], scientific [3] [4] [5] [6] [7], and technological services also experienced a significant number of confirmed incidents. The rise of politically and ideologically motivated threat actors involved in cyber extortion is also highlighted [5], with a significant increase in ransomware victims worldwide [5].
The year 2023 witnessed the highest number of cyber extortion victims on record [5], with large enterprises being the primary targets [1] [2] [4] [5] [7]. The increase in cyber extortion attacks was further fueled by a threat actor named Cl0p [5], who exploited two major vulnerabilities [2] [5]. Hacking remains the most detected type of security incident [1] [4], followed by misuse and malware [4]. The majority of incidents originate from external actors [4], with end user devices and servers being the most impacted assets [4].
Conclusion
The threat landscape is evolving rapidly [2], and the number of cyber extortion victims globally increased by 46% in 2023. Large enterprises were the primary targets [1] [2] [4] [5] [7], but small organizations and medium-sized businesses also suffered significant losses. The United States [1] [2] [4] [7], United Kingdom [1] [2] [4] [7], and Canada had the highest number of victims [1] [2] [4] [7], but there is a growing distribution of victims in India [2], Oceania [1] [2] [3] [7], and Africa [1] [2] [3] [7].
The report highlights the challenges faced in disrupting cyber extortion operations, with the emergence and disappearance of various groups. It emphasizes the need for organizations to understand the evolving threat landscape and take proactive measures to reduce their risk of exposure [7]. The rise of politically and ideologically motivated threat actors further underscores the importance of cybersecurity measures.
References
[1] https://news.abplive.com/technology/india-sees-97-yoy-increase-in-number-of-cyber-extortion-victims-orange-cyberdefense-finds-1646255
[2] https://vmblog.com/archive/2023/11/29/security-navigator-2024-reveals-highest-number-of-cyber-extortion-victims-ever-recorded-with-an-increase-of-46-worldwide-in-2023.aspx
[3] https://www.infosecurity-magazine.com/news/manufacturing-top-targeted-orange/
[4] https://www.itvoice.in/security-navigator-2024-reveals-highest-number-of-cyber-extortion-victims-ever-recorded-with-an-increase-of-46-worldwide-in-2023
[5] https://www.orange-business.com/en/press/security-navigator-2024-reveals-highest-number-of-cyber-extortion-victims-ever-recorded
[6] https://www.themanufacturer.com/articles/manufacturing-top-target-of-record-breaking-cyber-extortion/
[7] https://www.orangecyberdefense.com/global/news/research/orange-cyberdefense-releases-security-navigator-2024
