The cyberthreat landscape carries on to evolve, with attackers continuing to adopt new ways in reaction to quite a few factors — such as the success of endpoint safety instruments.
Maybe it goes with no expressing, but in 2023, there is no lack of alarming trends in the spot of cyberthreats. The MOVEit attacks have underscored the shift by some attackers mindful from encryption-based ransomware, in favor of details theft and extortion-only. Quite a few attackers are relying much less and considerably less on malware and far more on exploiting resources this sort of as remote monitoring and administration (RMM), which are a lot less probable to be caught by endpoint stability merchandise. Identity-primarily based attacks applying compromised qualifications are continuing to surge for identical motives, as a way to get all-around endpoint detection and response (EDR). Phishing and social engineering continue being significant threats to organizations throughout the board.
[Related: The 10 Biggest Data Breaches of 2023 (So Far)]
But threats and hacker techniques also continue to evolve in 2023.“We’re viewing diversification relative to the type of attacks,” SonicWall CEO Bob VanKirk told CRN in a earlier job interview. Dependent on a range of factors, “threat actors are continuing to pivot,” he claimed.
In terms of emerging threats in 2023, assaults leveraging generative AI has gotten a large amount of the focus (and yes, GenAI variables into the listing that follows). But there’s been a large amount much more likely on when it comes to the visual appeal of new hacker techniques this calendar year. Security scientists have recognized quite a few rising threat trends and new tactics across phishing and social engineering, facts theft and extortion, ransomware and software provide chain attacks.
As section of CRN’s Cybersecurity 7 days 2023, we’ve compiled a sampling of the new threats and hacker techniques that have emerged around the earlier year. We’ve compiled the details from CRN interviews and posts by scientists and incident responders from Huntress, CrowdStrike, Zscaler, Mandiant, Microsoft, GuidePoint Security and Cisco Talos, amid others.
What follows are 10 rising cybersecurity threats and new hacker tactics to know about in 2023.