CrowdStrike, a leading provider of cloud-native endpoint protection, has just released their 2023 CrowdStrike Global Threat Report which identifies critical cybersecurity threats worldwide.
In an interview with Dave Bittner on the CyberWire Daily Podcast, Adam Meyers, Vice President of Intelligence at CrowdStrike, discussed the key findings of their report. Meyers noted a significant shift in cyber threats towards critical infrastructure. Industrial control systems (ICS) and operational technology (OT) have become primary targets for attackers. Meyers cited several high-profile attacks on critical infrastructure including the 2022 attack on the Colonial Pipeline in the US, which resulted in widespread fuel shortages across the East Coast.
Meyers explained that with the increased reliance on technology in critical infrastructure, companies and governments need to take cyber threats seriously. “We’re seeing a shift in how people are thinking about cybersecurity in the critical infrastructure space. And I think part of that is driven by the fact that people are realizing that these systems are no longer isolated. They’re connected. And as a result, they’re vulnerable,” said Meyers.
Another significant trend highlighted in the report is the rise in ransomware attacks. “Ransomware is not a new phenomenon, but what we are seeing is an acceleration of these attacks and an increase in their sophistication,” said Meyers. He added that ransomware attacks are no longer just about encrypting data but now include data exfiltration. Hackers steal sensitive data before encrypting it, and then threaten to release it publicly unless a ransom is paid. Meyers warned businesses to be proactive in protecting themselves against ransomware attacks.
The report also emphasized the importance of insider threats. While external cyber threats grab media attention, insider threats can be just as damaging. Insider threats can include malicious employees, unintentional data breaches, or third-party contractors with access to sensitive data. Meyers stressed the importance of companies implementing strong security measures to mitigate these risks.
Finally, the report highlighted the emergence of deepfakes as a new type of cybersecurity threat. Deepfakes are manipulated or synthetic media in which a person’s likeness can be manipulated to say or do anything. Meyers explained that deepfakes can be particularly problematic in social engineering attacks, where attackers use deepfakes to trick individuals into revealing sensitive information.
To address these emerging threats, Meyers emphasized the need for companies to shift their approach from reactive to proactive cybersecurity measures. He suggested that companies should focus on building a culture of cybersecurity awareness, investing in cybersecurity training for employees, and implementing multi-factor authentication.
In conclusion, the 2023 CrowdStrike Global Threat Report highlights the critical need for organizations to prioritize cybersecurity. The report underlines the shift towards critical infrastructure threats, the increase in ransomware attacks, insider threats, and the emergence of deepfakes as cybersecurity risks. By implementing proactive measures, organizations can better protect themselves against these emerging threats and safeguard their critical assets.