HomeCII/OT5 Cybercrime Trends to Watch

5 Cybercrime Trends to Watch

Published on

spot_img

Law enforcement agencies, such as Europol and the UK’s National Crime Agency (NCA), are continuing their efforts to combat cybercrime. These organizations emphasize the importance of collaboration between law enforcement, businesses, and consumers in order to strengthen defenses against cyber threats. Additionally, vendors play a crucial role in researching emerging threats and integrating security measures into their products.

One concerning trend highlighted by the NCA is the convergence between state-sponsored activity and cybercrime. In the past, these two areas were distinct, with state-sponsored activity focused on cyberespionage or destructive attacks for geopolitical and military purposes, while cybercriminals were motivated by financial gain. However, the NCA has observed a growing overlap between the two. Some actors are now using cybercrime techniques to steal money for their respective states, and some governments turn a blind eye to the activities of ransomware and other criminal groups. This convergence poses challenges for attribution of cyber breaches and potentially provides crime groups with more sophisticated knowledge.

Data theft is identified as a major contributor to the prevalence of fraud. The NCA states that fraud now accounts for 40% of all crime in the UK, with compromised data being a central commodity in the cybercrime economy. Data obtained from victims’ devices, rather than just static information like card details, is being sold on dark web marketplaces. The cybercrime supply chain from data theft to fraud involves various actors, including initial access brokers, bulletproof hosters, and vendors of counter-antimalware and crypter services. Disrupting these services can have a disproportionate impact on the criminal ecosystem.

Another challenge outlined in the reports is the repeated targeting of the same victims by multiple threat actors. Organizations that have experienced a cyber breach may not be safe from future attacks, as compromised corporate credentials can be sold and circulated among different threat actors. Additionally, fraudsters are becoming more sophisticated in their tactics, such as impersonating lawyers or police officers to further exploit victims.

Phishing remains a prevalent and effective method for cybercriminals. The human factor continues to be the weakest link in cybersecurity, making phishing emails a common entry point for malware and data breaches. The ease of use provided by phishing kits and the emergence of generative AI tools further compound the problem. Criminals are utilizing these tools to create more realistic-looking phishing messages and even deepfake videos.

Perhaps most concerning is the normalization of criminal behavior among young individuals. Dark web sites not only facilitate the trade of stolen data but also provide knowledge and support for various cybercrime activities. Tutorials and how-to manuals offer guidance on fraud campaigns, money laundering, child exploitation, malware deployment, and more. These underground sites and forums are also used to recruit newcomers, with Europol highlighting that 69% of European youngsters have engaged in cybercrime or online harm.

While law enforcement agencies are crucial in fighting cybercrime, it is essential for society as a whole to come together to address the issue. Collaboration between law enforcement, businesses, consumers, and vendors is needed to strengthen defenses, disrupt criminal networks, and ultimately send the message that cybercrime does not pay. With cyber threats becoming increasingly sophisticated, it is vital for all stakeholders to work together and stay vigilant to stay ahead of cybercriminals.

Source link

Latest articles

Hackers Exploit Trusted Microsoft Domain and One-Time Codes to Hijack Corporate Accounts

Rising Phishing Threat Exploits Microsoft Authentication Flows A new phishing technique has surfaced, capitalizing on...

NCA Warns Parents About Exploitation of Shared Child Photos by AI

The National Crime Agency (NCA) has initiated a significant campaign aimed at educating parents...

Single Points of Failure Are Problematic: The SaaS Layer Is No Exception

Lessons in IT Resilience: The Inevitable Nature of Failure and the Case for Redundancy In...

AI Isn’t Bridging the Skills Gap — It’s Highlighting the Validation Gap

AI and Cybersecurity: A Growing Concern Amidst Rapid Deployment The advent of artificial intelligence (AI)...

More like this

Hackers Exploit Trusted Microsoft Domain and One-Time Codes to Hijack Corporate Accounts

Rising Phishing Threat Exploits Microsoft Authentication Flows A new phishing technique has surfaced, capitalizing on...

NCA Warns Parents About Exploitation of Shared Child Photos by AI

The National Crime Agency (NCA) has initiated a significant campaign aimed at educating parents...

Single Points of Failure Are Problematic: The SaaS Layer Is No Exception

Lessons in IT Resilience: The Inevitable Nature of Failure and the Case for Redundancy In...