Carding
Professional
- Messages
- 2,870
- Reaction score
- 2,486
- Points
- 113
Asian industrial sector in the red zone: 74% of cyber attacks are targeted.
The Asia-Pacific region is becoming increasingly attractive to cybercriminals, according to a new study from Positive Technologies. The study showed that malicious software was used in 57% of attacks on organizations, the industrial sector was the most vulnerable to attacks by cryptographers, and the main motive of cybercriminals was cyber espionage. At the same time, almost a third of successful attacks resulted in an unacceptable event-violations of the main activity of the organization.
According to an analysis by Positive Technologies, 74% of attacks were targeted, that is, they were directed at specific organizations, industries, or people. Cryptographers pose a serious threat to businesses in the region: their main victims were industrial enterprises, which accounted for 34% of successful attacks.
Cyber espionage is one of the main threats to organizations and states in Asia. Almost every third attack with the use of VPO detected spyware. In half of the successful attacks on organizations (49%), confidential information was compromised. Ordinary users also experienced a leak of confidential information, and 76% of successful attacks resulted in such consequences. In total, 24% of successful attacks were directed at individuals, which exceeds the same indicator in the world (in 2022, the share of attacks on users in the world was 17%).
In 27% of successful attacks on organizations, a violation of the main activity was recorded, including a temporary shutdown of business processes, lack of access to infrastructure or data.
The most common victims of attacks are government agencies (22% of all attacks on organizations), industrial companies (9%), IT companies (8%) and financial organizations (7%). Government agencies in the Asian region have become the main target of cybercriminals due to the large amount of valuable information that is stored in these systems, as well as due to the active digital transformation and integration of new technologies into government systems. IT companies also attract the attention of cybercriminals, as they possess a large amount of valuable data, including intellectual property and user information.
The majority of attacks on organizations in the region (81%) target computers, servers, and network equipment. In 22% of cases, attackers successfully hacked web resources, most often using known vulnerabilities or compromised credentials.
Malicious software (HPE) is used in 57% of attacks on organizations. Social engineering methods are used almost equally (40% of successful attacks) and exploiting vulnerabilities in company resources (39%). This indicates insufficient protection of publicly available resources of organizations.
Among the types of HPE used in attacks on organizations, remote management tools came first (54% of successful attacks using HPE), which allow attackers to gain full control over infected systems. In second place — cryptographers (50%), who block access to data and demand a ransom for their recovery. In third place is spyware (35%), which collects and transmits confidential information.
Organizations in the Asian region are very popular in the shadow market of cyber services: among the countries in the Asian region, ads for selling access to companies in China, Thailand, and India are the most common. These are mainly government organizations, IT companies, and service companies. The cost of access to company information systems depends on the size of the organization and account privileges. Access to the network with the rights of an ordinary user or to a small company can cost $ 100-200, and domain administrator privileges are estimated at $ 500 or higher.
The Asia-Pacific region is becoming increasingly attractive to cybercriminals, according to a new study from Positive Technologies. The study showed that malicious software was used in 57% of attacks on organizations, the industrial sector was the most vulnerable to attacks by cryptographers, and the main motive of cybercriminals was cyber espionage. At the same time, almost a third of successful attacks resulted in an unacceptable event-violations of the main activity of the organization.
According to an analysis by Positive Technologies, 74% of attacks were targeted, that is, they were directed at specific organizations, industries, or people. Cryptographers pose a serious threat to businesses in the region: their main victims were industrial enterprises, which accounted for 34% of successful attacks.
Cyber espionage is one of the main threats to organizations and states in Asia. Almost every third attack with the use of VPO detected spyware. In half of the successful attacks on organizations (49%), confidential information was compromised. Ordinary users also experienced a leak of confidential information, and 76% of successful attacks resulted in such consequences. In total, 24% of successful attacks were directed at individuals, which exceeds the same indicator in the world (in 2022, the share of attacks on users in the world was 17%).
In 27% of successful attacks on organizations, a violation of the main activity was recorded, including a temporary shutdown of business processes, lack of access to infrastructure or data.
The most common victims of attacks are government agencies (22% of all attacks on organizations), industrial companies (9%), IT companies (8%) and financial organizations (7%). Government agencies in the Asian region have become the main target of cybercriminals due to the large amount of valuable information that is stored in these systems, as well as due to the active digital transformation and integration of new technologies into government systems. IT companies also attract the attention of cybercriminals, as they possess a large amount of valuable data, including intellectual property and user information.
The majority of attacks on organizations in the region (81%) target computers, servers, and network equipment. In 22% of cases, attackers successfully hacked web resources, most often using known vulnerabilities or compromised credentials.
Malicious software (HPE) is used in 57% of attacks on organizations. Social engineering methods are used almost equally (40% of successful attacks) and exploiting vulnerabilities in company resources (39%). This indicates insufficient protection of publicly available resources of organizations.
Among the types of HPE used in attacks on organizations, remote management tools came first (54% of successful attacks using HPE), which allow attackers to gain full control over infected systems. In second place — cryptographers (50%), who block access to data and demand a ransom for their recovery. In third place is spyware (35%), which collects and transmits confidential information.
Organizations in the Asian region are very popular in the shadow market of cyber services: among the countries in the Asian region, ads for selling access to companies in China, Thailand, and India are the most common. These are mainly government organizations, IT companies, and service companies. The cost of access to company information systems depends on the size of the organization and account privileges. Access to the network with the rights of an ordinary user or to a small company can cost $ 100-200, and domain administrator privileges are estimated at $ 500 or higher.
