adaptation of tactics, techniques, and procedures (TTPs) by threat actors in today’s ever-evolving threat landscape.
Adaptation of Threat Actors
The report highlights how threat actors are continuously adapting and evolving their tactics to bypass traditional security measures, particularly during the COVID-19 pandemic. Many cybercriminals have shifted their focus to target remote workers, exploiting vulnerabilities in home networks and personal devices. Some threat actors have adopted new tactics such as using ransomware-as-a-service (RaaS), which allows non-technical criminals to purchase and use ransomware with ease.
Shift to Virtual Currencies
Another trend identified in the report is the shift towards virtual currencies, such as Bitcoin, for illicit activities. This shift is due to the increasing difficulty of tracing cryptocurrency transactions, making it easier for cybercriminals to receive payments anonymously. Additionally, the report found an increase in the use of decentralized marketplaces, making it harder for authorities to track down and shut down illegal marketplaces.
Emergence of New Criminal Ecosystems
The report also notes the emergence of new criminal ecosystems, where cybercriminals collaborate to share tools, knowledge, and resources to carry out attacks. These ecosystems include forums, marketplaces, and even social media platforms, where cybercriminals can interact with one another. This enables less technically-savvy criminals to access advanced tools and tactics, increasing the sophistication of attacks.
Importance of Regular Security Assessments
As threat actors continue to adapt and evolve their tactics, it is essential for businesses to regularly assess and update their security measures. This includes implementing multi-layered security controls, providing employee training on cybersecurity best practices, and conducting regular security assessments. It’s crucial to stay knowledgeable about the current cyber threat landscape to protect against potential attacks.
The State of the Cybercrime Underground report highlights the continuous adaptation of threat actors in today’s evolving threat landscape. Cybercriminals are shifting towards exploiting vulnerabilities in home networks, using virtual currencies for illicit activities, collaborating within criminal ecosystems, and adopting new tactics like RaaS. To protect against potential attacks, businesses must regularly assess and update their security measures and stay knowledgeable about the current threat landscape.Original Article: https://thehackernews.com/2023/06/activities-in-cybercrime-underground.html