The growing alliance between ransomware groups and initial access brokers (IABs) continues to be a powerful force driving the cybercriminal industry, according to the latest report from Group-IB, titled Hi-Tech Crime Trends 2023/2024. The report reveals a 74% year-on-year increase in the number of companies that had their data uploaded on dedicated leak sites (DLS), highlighting the increasing threat posed by cybercriminals across the globe.
One of the notable trends identified in the report is the heightened interest of global threat actors in Apple platforms, particularly macOS. Underground sales related to macOS information stealers saw a significant fivefold increase, underscoring the shift in focus towards targeting Apple users. This demonstrates the adaptability of cybercriminals in diversifying their tactics to capitalize on new opportunities.
Furthermore, the report highlights the growing appetite of nation-state sponsored threat actors, also known as advanced persistent threat (APT) groups, in targeting organizations worldwide. Group-IB experts discovered a 70% increase in the number of public posts offering zero-day exploits for sale, indicating a rising trend of sophisticated cyber attacks orchestrated by state-sponsored actors.
In addition to traditional cyber threats, Group-IB’s report sheds light on the malicious use of legitimate services and artificial intelligence (AI) infused technologies as emerging cyber risks for 2024. Cybercriminals are leveraging AI to develop malware, generate convincing social engineering attacks, and enhance their operational efficiency. Large language models such as ChatGPT are being exploited by cybercriminals for nefarious activities, with underground forums showcasing a growing interest in tools designed to bypass security controls.
The report also uncovers the sale of compromised ChatGPT credentials on the dark web, posing significant security risks for businesses. Group-IB detected a surge in compromised ChatGPT credentials being traded on illicit marketplaces, highlighting the vulnerability of organizations relying on AI-powered tools for day-to-day operations. The threat of information-stealing malware targeting ChatGPT users is on the rise, with cybercriminals exploiting compromised accounts to gain access to sensitive corporate data.
Moreover, ransomware gangs continue to wreak havoc on companies worldwide, with a significant increase in the number of organizations having their data published on ransomware DLSs. Group-IB’s Threat Intelligence unit detected a staggering 4,583 companies that fell victim to ransomware attacks in 2023, representing a 74% increase from the previous year. North America emerged as a prime target for ransomware groups, with a substantial number of companies in the region experiencing data breaches and illicit data exposure.
The report also highlights the role of IABs in facilitating ransomware attacks, with a steady stream of corporate access being put up for sale on dark web forums. The average price for corporate access decreased in 2023, indicating a growing market for stolen credentials and access to sensitive company networks. This trend underscores the need for organizations to bolster their cybersecurity defenses and remain vigilant against evolving cyber threats.
In conclusion, the Hi-Tech Crime Trends 2023/2024 report paints a sobering picture of the cybersecurity landscape, with cybercriminals increasingly leveraging advanced technologies and exploiting vulnerabilities in AI-powered tools. The collaborative efforts between ransomware groups, IABs, and nation-state actors pose a formidable challenge for organizations seeking to safeguard their data and networks. As the threat landscape continues to evolve, it is imperative for businesses to prioritize cybersecurity measures and stay ahead of emerging threats to effectively mitigate risks and protect sensitive information.