Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Resecurity Released a 2024 Cyber Threat Landscape Forecast

Cybersecurity company Resecurity has published the 2024 Cyber Threat Landscape Forecast. Resecurity, a Los Angeles-based cybersecurity company protecting Fortune 100 and government agencies worldwide, has compiled a comprehensive forecast outlining the imminent threats and novel security challenges anticipated in the upcoming year. These projections stem from an in-depth analysis of the underground economy’s evolution on […]

2024 Cyber Threat Landscape Forecast

Cybersecurity company Resecurity has published the 2024 Cyber Threat Landscape Forecast.

Resecurity, a Los Angeles-based cybersecurity company protecting Fortune 100 and government agencies worldwide, has compiled a comprehensive forecast outlining the imminent threats and novel security challenges anticipated in the upcoming year. These projections stem from an in-depth analysis of the underground economy’s evolution on the Dark Web and a thorough examination of significant cybersecurity incidents targeting corporations and governments.

Key trends:

1️. Increased Ransomware Activity Targeting Public Companies

Ransomware groups are poised to intensify their focus on publicly-traded organizations. Recent U.S. Securities and Exchange Commission regulations are expected to fuel heightened interest among malicious actors in orchestrating network intrusions and data breaches within these entities. Bad actors will leverage these regulations as tools for manipulation and extortion, echoing the tactics employed by certain ransomware operators who threaten victims with GDPR compliance violations and regulatory fines.

2️. Cyber Attacks Against Energy (Oil & Gas) and Nuclear Sectors

Critical infrastructure across all domains continues to remain a focal point for cyber-attacks, orchestrated by both cybercriminal elements and nation-state actors. The recent cyber-attacks by an Iranian-backed cybercriminal group on a water utility in Aliquippa, Pennsylvania by targeting an Israeli-made SCADA system exemplify incidents teetering on the edge of cyberterrorism and cybercrime. Resecurity’s latest report, “Ransomware Attacks against the Energy Sector on the rise – Nuclear and Oil & Gas are Major Targets in 2024,” underscores the heightened threat to the nuclear sector as a geopolitical target.

3️. Weaponization of Artificial Intelligence (AI) Will Skyrocket

Anticipate a surge in the cultivation of weaponized AI by malicious actors across various domains, including disinformation apparatus. Cybercriminals will harness AI to scale and optimize operations in the cyberspace, while nation-states will leverage it for more strategic tasks related to decision-making processes and integration into the war domain. The weaponization of AI introduces a novel dimension to cyber threats, posing challenges that demand innovative countermeasures and international collaboration.

4️. Smart Cities and the Rising Cybersecurity Challenge

Looking forward to 2024, it’s evident that smart cities must adopt a proactive approach to cybersecurity. This strategy goes beyond just deploying the latest technologies to combat AI and mobile threats. It also involves actively identifying and securing potential vulnerabilities in IT/OT supply chains, and identity protection implementation for citizens and e-government.

5️. Digital Identity in the Crosshairs of Cyber Attacks

Expect a proliferation of attacks against digital identity, leading to unprecedented large-scale data breaches. The absence of robust identity protection programs will result in substantial economic losses for businesses (especially, financial services) and pose privacy risks for consumers.

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, 2024 Cyber Threat Landscape Forecast)