Weekly threat reports

Weekly threat monitor: July 28th, 2022

July 28, 2022

Summer break! As the North Americas sets in for a summer break, OT, ICS, SCADA, and Manager Service Providers (MSP) across the nations face the threat of increasing volumes of cyberattacks targeting their most...

Weekly threat monitor: July 14th, 2022

July 14, 2022

As the crippling economic sanctions imposed upon nations such as North Korea, Russia, Iran, and China continue to ramp up, a trend in rising cyberattacks and budding threat actors is on the rise. This...

Weekly threat monitor: July 7th, 2022

July 7, 2022

Cyberattacks on critical infrastructure globally are on the rise as more threat actors, freelancers, and APT groups enter the ecosystem. Attacks are only predicted to rise in three distinct groups of attack...

Weekly threat monitor: June 29th, 2022

June 29, 2022

IoT and OT security should be your top priority in the following months as threat actors are much more focused on disrupting operational functions and with the intent to stay dormant and monitor the network...

Weekly threat monitor: June 13th, 2022

June 13, 2022

Critical infrastructure in North America falls under the spotlight of hackers/APT groups again with a rising sophistication and an increased volume of target cyberattacks. Primary sectors that must stay on...

Weekly threat monitor: June 7th, 2022

June 7, 2022

Healthcare, pharmaceutical, and manufacturing faced the brunt of sophisticated cyberattacks that were perpetrated considering the critical nature of such segments of the industry and the likelihood of...

Weekly threat monitor: May 30th, 2022

May 30, 2022

Ransomware, which once was a rare tactic used by APT groups is now a habitual go-to malware that anyone can purchase off the dark web for less than $50 or outsourced to groups that provide Ransomware as a...

Weekly threat monitor: May 25th, 2022

May 25, 2022

Since our previous advisory, the threats impacting connected assets are now growing at alarming rates in the Asia Pacific, Middle East, and the Americas regions. This threat is likely to persist in the coming...

Weekly threat monitor: May 18th, 2022

May 18, 2022

Cyberattacks have grown significantly in the past week, impacting several nations in Latin America, and the Middle East region. This rising threat can easily be associated with a recent discovery made by...

Weekly threat monitor: May 10th, 2022

May 10, 2022

Conti Ransomware as predicted accurately from our previous blog post is growing to be a much larger threat. Enterprises, Oil & Gas entities, and manufacturing segments of the industry are facing the brunt...

Weekly threat monitor: May 4th, 2022

May 4, 2022

Campaigns to promote BumbleBee malware loader, a sophisticated malware downloader that can detect virtual environments, load multiple ransomware, and is highly stealthy dominated the threat landscape this...

Weekly threat monitor: April 25th, 2022

April 25, 2022

Sectrio issues major cybersecurity alert for manufacturing and oil and gas companies Oil and Gas and auto manufacturing facilities need to be on their guard this week. Firms in these two sectors have to watch...

Weekly threat monitor: April 19th, 2022

April 19, 2022

Attack volumes remain static while sophistication grows Attacks on some sectors grew in the week ending April 16th while some sectors recorded a decline in the number of cyberattacks logged by our global...

Weekly threat monitor: April 4th, 2022

April 4, 2022

Cyberattacks continue more so than ever. In the United States, while all the focus continues on the ongoing geopolitical conflict, the increasing pace of targeted cyberattacks makes on the energy sector ramps...

Weekly threat monitor: March 28th, 2022

March 28, 2022

In the past week, there were significant developments in cyberspace, with the spotlight on a ransomware group claiming successful cyberattacks and data breaches on high-profile tech companies and allegedly...

Weekly threat monitor: March 21st, 2022

March 21, 2022

Ransomware, DDoS, and Botnet attacks made headlines in the past week. Sectrio has detected huge volumes of DDoS attacks taking down websites, primarily government-affiliated websites. Most of these attacks are...

Weekly threat monitor: March 14th, 2022

March 14, 2022

Critical Infrastructure segments such as oil and gas, water, and wastewater treatment facilities, energy generation systems, and government bodies now bear the full brunt of cyberattacks. Ransomware attacks in...

Weekly threat monitor: March 8th, 2022

March 7, 2022

Two events dominated the IoT and OT cyber threat landscape last week. We saw a large-scale attempt made by some hackers to divert traffic from residential complexes across the US, Europe, and APAC. This...

Weekly threat monitor: February 28th, 2022

February 28, 2022

The unprovoked attack on Ukraine by Russia made headlines globally as shockwaves of panic across citizens of all nations fear of a global escalation that could lead into something our world has not seen for at...

Weekly threat monitor: February 21st, 2022

February 21, 2022

Critical infrastructure sectors in the United States are on the highest alert and on the watch out for any cyber incidents following four cyber advisories asking all to have their shields up. These advisories...

Weekly threat monitor: February 14th, 2022

February 14, 2022

  The cyberattacks targeted at Ukraine and its allies have grown significantly in the past week over escalating geopolitical tensions with Russia and the United States. The cyberattacks are now showing signs...

Weekly threat monitor: February 7th, 2022

February 7, 2022

As malicious cyber threat campaigns continue around the world, businesses, industrial establishments, and governments should ramp their efforts to implement zero-trust architecture across facilities. OT and...

Weekly threat monitor: January 31st, 2022

January 31, 2022

The advisory issued on maintaining a high state of alert in cyberspace by Sectrio will apply to this week as well since we are not seeing any dip in the volume of cyberattacks across the globe. We are also...

Weekly threat monitor: January 24th, 2022

January 24, 2022

As the tensions over Ukraine, Russia, and the United States continue to escalate, US CISA issued a major advisory for all businesses last week. The advisory warned of imminent threats to digital infrastructure...

Weekly threat monitor: January 17th, 2022

January 17, 2022

Sectrio’s analysis of cyberattacks and online threats from January 3rd, 2022, shows an increased level of sophistication in cyberattacks targeting large Manufacturers and Oil and Gas Entities. Attacks...

Weekly threat monitor: January 10th, 2022

January 10, 2022

On Friday, Jan 07th, there was a significant rise in cyber attacks registered by our golbal threat inteligence gathering network. Most of these attacks were directed towards SCADA and ICS. Attacks on IoT and...

Weekly threat monitor: January 3rd, 2022

January 3, 2022

Here’s wishing everyone a safe and secure 2022. As we begin the new year, unpatched vulnerabilities from the year gone by are returning to haunt us. While the volume of cyberattacks took a dip on the last day...

Weekly threat monitor: December 20th, 2021

December 20, 2021

As the fatigue of the patching in vulnerability (Log4j) sets in during the holidays, the threat actors and other APT groups, unaware of the exploit, are now exploiting systems that remain unpatched. This new...

Weekly threat report: December 13th, 2021

December 13, 2021

Instances of successful breaches are rising across global IoT and OT deployments as most SecOps teams are occupied with audits and other internal work as the year 2021 draws to a close. Hackers also seem to be...

Weekly threat report: December 6th, 2021

December 6, 2021

As we enter the last month of the year, we are seeing hackers putting in additional efforts into creating breaches leveraging the upcoming holiday season. Sectrio could uncover the sheer advancements in the...

Weekly threat report: November 29th, 2021

November 29, 2021

As the fears of a new covid variant begin to set in malware developers can be expected to align with the new level of confusion and anxiety this might cause. More importantly, with the rising fears about the...

Weekly threat monitor: November 22nd

November 22, 2021

OT and IoT cyberattacks continue to rise at a much higher rate as geo-political tensions rise in countries in the Middle East, Europe, and parts of South-Eastern Asia regions. Hackers are using malware and...

Weekly threat monitor: November 15th

November 15, 2021

Cyberattacks across industries except oil and gas and manufacturing registered dips this week. The attacks on these two sectors registered a small rise which is again the lowest rise we have registered in over...

Weekly threat monitor: November 8th

November 8, 2021

Cyberattacks on the oil and gas segment cooled down a bit after almost 200 days of rising consistently. Such a dip in attacks could mean the hackers are getting ready for more attacks or are revisiting their...

Weekly threat monitor: November 1st

November 1, 2021

Cyberattacks on supply chain companies in USA and UK dominated the global cyberthreat landscape trends in the last week of October. As the cybersecurity awareness month ended, a spike in cyberattacks on this...

Weekly threat monitor: October 25th

October 25, 2021

Hackers are stepping up attacks on global public safety and service infrastructure. This includes CCTV cameras, water and gas supply infrastructure, wastewater treatment facilities, and sensor systems...

Weekly threat monitor: October 18th

October 18, 2021

BlackMatter ransomware was extensively detected by our honeypot networks across APAC, EMEA and North America last week. Financial services, manufacturing plants and oil and gas infrastructure were among the...

Weekly threat monitor: October 11th

October 11, 2021

Cyberattacks are not showing any signs of abating during the global Cybersecurity Awareness Month. After registering a slight dip in the first week of October, the numbers rose significantly across regions and...

Weekly threat monitor: October 4th

October 4, 2021

Cyberattacks globally showed a slight dip in the last week.  This could be attributed to hackers redirecting their efforts towards improving the quality of malware In terms of IoT cybersecurity, new and more...

Weekly threat monitor: September 20th

September 20, 2021

Reconnaissance attacks on IoT and OT installations showed a significant rise last week. This means: IoT and OT cybersecurity posture adopted by some of the targeted companies is not helping Hackers are...

Weekly threat monitor: September 13th

September 13, 2021

Cyberattacks on IoT projects in the Asia-Pacific region and North America showed a minor rise this week. The countries affected were Singapore, Malaysia, Thailand, the USA, and Mexico. The attacks were...

Weekly threat monitor – August 24th

August 24, 2021

Hit and run tactics deployed by hackers in the early part of this year has yielded rich dividends for hackers and cybercrime groups. Data stolen from a variety of industries continue to appear on the Dark Web...

Weekly threat monitor – July 27th

July 28, 2021

Cyberattacks on the US and UK continue to grow for the fourth week running. Most of these attacks are coming from Eastern Europe and South-East Asia and are targeting manufacturing, utilities, and urban...

Weekly threat monitor – July 20th

July 20, 2021

The US was the most attacked country in the world last week with most attacks coming from 3 sub-regions in Asia and one in Western Europe. 33 percent of all attacks were deep reconnaissance attacks targeting...

Weekly threat monitor – July 13th

July 13, 2021

Australia was the most attacked country for the week ending July 11. Sectors targeted include healthcare, manufacturing, power grids, government agencies and educational institutions. Cyberattacks rose 11...

Weekly threat monitor – June 29th

June 29, 2021

The Federal Bureau of Investigation admitted a few days ago that the Covid-19 pandemic had provided hackers and other groups with a favorable situation to exploit. “As of May 28, 2020, the Internet Crime...

Weekly threat monitor – June 22th

June 22, 2021

Outbound cyberattacks emerging from North Korea attributed to APT group Lazarus went down last week. The five countries that were constantly targeted by this group reported lesser attacks and the number of...

Weekly threat monitor – June 15th

June 15, 2021

As cyberattacks on civic infrastructure continue to rise, cities have started getting ransom demands to prevent their data from being released on the dark web. Further, some cities also had to deal with their...

Weekly threat monitor – June 08th

June 8, 2021

Geopolitical attacks dominated the cyberthreat landscape this week. Two regions viz., South Asia and the Middle East were at the epicenter of these attacks driven by APT groups and independent hackers acting...

Weekly threat monitor – May 25th

May 27, 2021

Critical infrastructure continues to bear the brunt of growing hacker activity around the world. This week saw a 17 percent increase in cyberattacks on critical infrastructure as APT groups and individual...

Weekly threat monitor – May 18th

May 19, 2021

As many countries came out of lockdown last week, hackers stepped up their attacks on target entities including manufacturing plants, medium businesses, and some government agencies. Attacks on healthcare...

Weekly threat monitor – May 11th

May 12, 2021

APTs dominated the landscape this week as attacks on specific elements of critical infrastructure rose 33 percent over 5 days. Control systems connected with water treatment plants seem to be the primary...

Weekly threat monitor – May 04th

May 4, 2021

This week witnessed less activity from APT groups but cybercriminals were active none the less trying to social engineer they way into a breach. Enterprises continue to be under pressure along with e-commerce...

Weekly threat monitor – April 27th

April 27, 2021

Understanding how the cyber threat landscape changed in April As warned by us last week, the attacks on healthcare institutions and research labs continued in the week ending April 25th. The Trump...

Weekly threat monitor – April 18th

April 20, 2021

Cyberattacks against global financial institutions, critical infrastructure, enterprises, and healthcare providers continue to rise.  In the week ending April 18, several APT groups including at least one...