Weekly threat monitor: April 19th, 2022

Attack volumes remain static while sophistication grows

Attacks on some sectors grew in the week ending April 16th while some sectors recorded a decline in the number of cyberattacks logged by our global honeypots. Cyberattacks on global oil and gas companies across upstream and downstream operations continued to rise for the 3rd consecutive week. Attacks on manufacturing and utilities continue to rise while the attacks on sectors such as retail and shipping fell a bit this week.

Hackers are now going after OT and IoT deployments connected with the above sectors in a phased manner. Aided by reconnaissance data collected over years and with help from careless insiders, it is only a matter of time before a major cyber attack succeeds. While the attacks originating from Russia stayed more or less static, that country is also attracting an increasing number of cyberattacks from nearly 20 countries.

Russian digital assets across financial services, critical infrastructure, defense, and utilities continue to log a significant volume of cyberattacks. Globally the percentage of cyberattacks targeted at Russia grew from 8 percent in early February to almost 21 percent in early April.  Such cyberattacks may also spill over into adjacent countries and the hackers may be using these attacks to try out new malware and breach tactics.

Caution is advised across sectors as hackers continue to put pressure on SOC and cybersecurity teams across industries.

Weekly advisory

Segments under this list must be on high alert in the coming weeks:
  • Financial Services
  • Manufacturing
  • Critical Infrastructure
  • Water and wastewater treatment facilities
  • Supply chains
  • Energy Sector
  • Oil and gas
  • Utility entities
  • Maritime agencies
  • Healthcare
  • Government Agencies

Leave a Reply

Your email address will not be published. Required fields are marked *

Scroll to Top