ThreatMon’s 2024 Mid-Year Global Cyber Threat Report explores the global threat landscape to give you a comprehensive overview of the most significant cyber threats and trends observed in the first half of the year. The analysis highlights a marked increase in dark web activities, ransomware attacks, and data breaches across various sectors globally. In particular, the manufacturing, healthcare, and finance sectors were heavily targeted in H1 2024, experiencing significant disruptions due to these cyber threats. The manufacturing sector faced the highest number of ransomware attacks, while the healthcare and finance sectors saw a surprising and exceedingly high increase in data breaches, reflecting their valuable data and critical operations.
ThreatMon analyzes the threat landscape based on its extensive and detailed data covering most active dark web forums and ransomware groups’ sites, the activities of most prominent threat actors, the vulnerability threat landscape, most used malware by threat actors, important breaches, and millions of stealer log data to present you insights into the the global threat landscape in the first half of 2024.
- There was extensive dark web activity during the first half of 2024, with more than 750 critical incidents detected by ThreatMon.
- The most common types of dark web posts included data leaks, malware sales, and service access sales.
- The first half of 2024 saw a significant level of ransomware incidents, with over 2,500 attacks detected.
- Among numerous ransomware groups, LockBit, RansomHub, and Play group were the most active in H1 2024.
- February and May were particularly notable for their significant increases in ransomware activity, indicating periods of heightened threat levels.
- The manufacturing sector faced the highest number of ransomware attacks, accounting for 30% of the total incidents with 245 cases.
- In the first half of 2024, the healthcare sector saw a notable rise in ransomware activity, with 101 incidents accounting for 12% of the total. Meanwhile, the finance sector experienced an increase in targeted attacks, representing 4% of all incidents. These trends underscore threat actors’ ongoing focus on these critical industries.
- The United States emerged as the most targeted country for ransomware attacks, experiencing 820 cases and accounting for 64.77% of the total incidents.
- The “Mother of All Breaches” (MOAB) in January 2024 stands out as one of the largest data breaches in history, with an unprecedented exposure of 26 billion records.
- One of the most critical incidents in 2024 occurred in May when Snowflake experienced a data breach affecting over 165 companies due to compromised customer credentials and the lack of multi-factor authentication. The threat actor UNC5537 exploited credentials obtained from stealer logs linked to third-party services, highlighting the necessity of a secure supply chain.
- In June 2024, a major supply chain attack on the Polyfill JS library, after its acquisition by a Chinese company, resulted in malware being injected into over 100,000 websites, targeting mobile devices and evading detection.
Views: 1
