▾ G11 Media Network: | ChannelCity | ImpresaCity | SecurityOpenLab | Italian Channel Awards | Italian Project Awards | Italian Security Awards | ...
InnovationOpenLab

Trellix Detects Collaboration by Cybercriminals and Nation-States

Trellix, the cybersecurity company delivering the future of extended detection and response (XDR), today released The CyberThreat Report: November 2023 from its Advanced Research Center. Trellix obser...

Business Wire

Report Highlights New Programming Languages in Malware Development, Adoption of Malicious GenAI, and Acceleration of Geopolitical Threat Activity

SAN JOSE, Calif.: Trellix, the cybersecurity company delivering the future of extended detection and response (XDR), today released The CyberThreat Report: November 2023 from its Advanced Research Center. Trellix observed indicators of collaboration between ransomware groups and nation-state-backed advanced persistent threat (APT) actors, adoption and usage of lesser-known programming languages for malware, and cybercriminals developing Generative AI (GenAI) tools.

"As technology advances, so does cybercrime – and understanding the changing landscape is vital for CISOs and SecOps teams to stay ahead of threats," said John Fokker, Head of Threat Intelligence, Trellix Advanced Research Center. “Cybercriminals are becoming increasingly more agile, organized, and politically aligned. It is imperative defenders refer to threat intelligence to strengthen their security posture with limited resources."

The Trellix Advanced Research Center’s latest CyberThreat Report includes:

  • Malicious GenAI: Cybercriminals bypass protections to take advantage of commonly known tools and use GenAI to enhance phishing campaigns. The accelerating scale and speed of phishing attacks indicates malicious GenAI may already be in deployment today.
  • Geopolitical Threat Activity: Nation-state threat activity spiked over 50% in the last six months due to conflict escalation in Russia and Ukraine, intensified cyber activity in Israel just before and during the conflict, and disruptive attacks on Taiwan heading into their 2024 elections.
  • Ransomware Developments: Global detections and industry-reported incidents, particularly in Q2, reflect unusual variations in ransomware families, as well as countries and industries targeted. The Trellix Advanced Research Center also observed a splintering of large ransomware groups, with the introduction of smaller groups and more attacks focused on data exfiltration.
  • Underground Collaboration: The last six months demonstrated an increase in threat actors actively collaborating on Dark Web forums. This spanned groups formally joining together (“The Five Families”), an escalation in selling/sharing of zero-day vulnerabilities, joint PoC development efforts to accelerate exploitations, and more.
  • Polyglot Malware: Cyber, a polycrisis itself, is a threat multiplier – and the rise of polyglot malware further exacerbates this. New programming languages are becoming popular malware choices, with Golang seeing high usage for ransomware (32%), backdoors (26%), and Trojan Horses (20%).

The cybersecurity landscape experiences upheaval regularly as geopolitical and economic developments create an increasingly complicated and uncertain world. New cyber actors emerge daily while new vulnerabilities, exploits, and tactics are constantly discovered. The comprehensive analysis provided by the Trellix Advanced Research Center serves as a vital resource for today’s CISOs to understand and mitigate evolving cybersecurity risks in an interconnected world.

The CyberThreat Report: November 2023 includes proprietary data from Trellix’s sensor network, investigations into nation-state and cybercriminal activity by the Trellix Advanced Research Center, and open and closed-source intelligence. The report is based on telemetry related to detection of threats, when a file, URL, IP-address, suspicious email, network behavior, or other indicator is detected and reported by the Trellix XDR platform.

Additional Resources

About the Trellix Advanced Research Center

The Trellix Advanced Research Center brings together an elite team of security professionals and researchers to produce insightful and actionable real-time intelligence to propel customer outcomes and the industry at large. Driven by the industry’s most comprehensive charter, our skilled researchers detect trends ahead of the market to empower our customers and partners to solve emerging threats. More at https://www.trellix.com/en-us/advanced-research-center.html.

Follow Trellix on LinkedIn and X.

Contacts

Sarah Erman
media@trellix.com

Fonte: Business Wire

If you liked this article and want to stay up to date with news from InnovationOpenLab.com subscribe to ours Free newsletter.

Related news

Last News

RSA at Cybertech Europe 2024

Alaa Abdul Nabi, Vice President, Sales International at RSA presents the innovations the vendor brings to Cybertech as part of a passwordless vision for…

Italian Security Awards 2024: G11 Media honours the best of Italian cybersecurity

G11 Media's SecurityOpenLab magazine rewards excellence in cybersecurity: the best vendors based on user votes

How Austria is making its AI ecosystem grow

Always keeping an European perspective, Austria has developed a thriving AI ecosystem that now can attract talents and companies from other countries

Sparkle and Telsy test Quantum Key Distribution in practice

Successfully completing a Proof of Concept implementation in Athens, the two Italian companies prove that QKD can be easily implemented also in pre-existing…

Most read

Red Hat Optimizes Red Hat AI to Speed Enterprise AI Deployments Across…

Red Hat, the world's leading provider of open source solutions, today continues to deliver customer choice in enterprise AI with the introduction of Red…

IMVARIA Reports Multi-Site Clinical Experience With FDA-Authorized AI…

#ATS--IMVARIA Inc., a health tech company pioneering AI-driven digital biomarker solutions, today reported results from multi-site clinical experiences…

Grant Thornton launches new tool, pairing skilled professionals with powerful…

Grant Thornton, one of America’s largest providers of end-to-end audit, assurance, tax and advisory services, announced today the launch of a new, proprietary…

Generational Group Advises Elarasys Worldwide, LLC and IT Hardware Plus,…

Generational Group, a leading mergers and acquisitions advisory firm for privately held businesses, is pleased to announce the sale of Elarasys Worldwide,…

Newsletter signup

Join our mailing list to get weekly updates delivered to your inbox.

Sign me up!