The most recent threat intelligence report from BlackBerry has shed light on the increasing number of cyberattacks targeting commercial enterprises. According to the report, over one-third of attacks (36%) were directed at these enterprises, with social engineering tactics being commonly used to gather account credentials and distribute malware. While the overall number of threats remained relatively steady, there was a significant 10% rise in new malware targeting commercial enterprises.
One alarming trend highlighted in the report is the use of deepfake technology in targeted attacks. Deepfakes, which are AI-generated realistic-looking videos, are now being utilized in attacks where a fraudulent recording of a CEO’s voice instructs employees to transfer funds to cybercriminals. This sophisticated tactic has raised concerns about the potential for deepfakes to be used in a wide range of malicious activities.
In terms of geographic distribution, the United States emerged as the primary target for cyberattacks among BlackBerry customers. A staggering 82% of prevented attacks were aimed at US-based organizations, with over half of these attacks involving new strains of malware. Other top targets included Japan, South Korea, Australia, and Honduras, with each country experiencing a significant amount of attempted cyberattacks.
One particularly troubling finding in the report was the severity of the vulnerabilities exploited by cybercriminals. The report revealed that 56% of the vulnerabilities identified through CVEs had a severity score of 7.0 or higher out of 10, indicating a high level of risk associated with these vulnerabilities. This represents a three percent increase from the previous reporting period, underscoring the need for organizations to prioritize patching and securing their systems.
Overall, the findings of the BlackBerry threat intelligence report paint a concerning picture of the current cyber threat landscape. With commercial enterprises increasingly being targeted by sophisticated cyberattacks, organizations must remain vigilant and proactive in their cybersecurity efforts to protect against emerging threats. The use of advanced technologies such as deepfakes in attacks further underscores the need for organizations to stay ahead of cybercriminals by investing in robust security measures and staying informed about the latest threat trends.