Weekly threat monitor: July 7th, 2022

Cyberattacks on critical infrastructure globally are on the rise as more threat actors, freelancers, and APT groups enter the ecosystem. Attacks are only predicted to rise in three distinct groups of attack types – Attacks on known and unpatched vulnerabilities – Which include the utilization of data dumps on the dark web in carrying out spear-phishing attacks. The second kind includes rogue employees and threat actors that are seasoned with an added layer of sophistication in the attacks that are carried out. The third kind includes APT groups with state-backed affiliations and RaaS operators that leverage a mix of type 1 and type 2. Such threat actors are a must watch out for.

Also read: Expanding RaaS eco-system is exploiting OT security gaps like never before

Regions affected this week were primarily the US as several attacks ranging from small businesses to enterprises in light of the USA’s Independence Day on the 4th of July with intentions of making the limelight. Since then, several organizations reported  ‘cyber incidents’ impacting their operational infrastructure and inaccessibility to their critical information. We advise all our readers to conduct thorough scans of your network to detect any latent malwares that infiltrate without detection. We also encourage our readers to analyze network logs and cross-reference them with the previous audits for anomalies that are dormant in your network.

In Europe, the Middle East, and Asia, the attacks on industrial equipment and the banking sector continue to grow at an unprecedented rate. These attacks in the wake of the crash of the crypto market are expected to rise in volumes and frequency. Geopolitical discords catalyze and often obfuscate the threat actors’ identity and intentions in most cases.

A recent tweet by ‘Gonjeshke Darande’ claimed a cyber attack perpetrated on a steel plant in the middle eastern region. This alleged claim brings out the serious threat of ill-motivated cyberattacks in the region.

Reach out to sectrio’s team of cybersecurity experts for a comprehensive threat assessment today: Sign up for threat assessment.

Weekly advisory

Segments under this list must be on high alert in the coming weeks:
  • Banks and Financial Services
  • Oil and gas
  • Manufacturing
  • Critical Infrastructure
  • Supply chains
  • Energy Sector
  • Water and wastewater treatment facilities
  • Utility entities
  • Maritime agencies
  • Healthcare
  • Government Agencies

Subscribe To Threat Report