2023

Global Threat Intelligence Report

Line between cyberthreats and physical impact continues to blur.

2023 Global Threat Intelligence Report

Beyond the Report: How to Protect Your Business.

While knowing the threats your business faces is important, knowing how to protect it is essential. That’s where Samurai XDR comes in. An all-in-one cybersecurity solution, Samurai XDR detects and responds to threats across your entire network before those threats can lead to data loss, reputational damage or ransomware.

Get Started

Key insights from the 2023 report

In 2022, we witnessed cyberthreats to critical infrastructure and
supply chains from a growing number of sources,
including nation-state actors, organized crime groups, and individual hackers.

icon

Top 5 Most-Attacked Sectors

Technology, Manufacturing, and Transport/Distribution continued to suffer heavy attacks due to their integration into infrastructure and supply chains.

Public sector moved into top 5

icon

Cloud and SaaS Attacks

Attacks on cloud and SaaS continued to increase. Web-based application and desktop application threats made up 70% of attacks.

Affected software include Wordpress & Apache

icon

Web Application Attacks

WordPress was the most attacked (CMS software) in the Americas, APAC (Asia Pacific) and EMEA (Europe, the Middle East and Africa).

Attacks via malware & botnet integration
icon

Banking Trojans and Cryptominers

Banking Trojans tapered off a bit from last year, but Cryptominers increased after a 2021 lull, even with the loss in value of many currencies.

Malware continues to evolve quickly
icon

High-Impact & Top Targeted Vulnerabilities

Attackers targeted high-impact vulnerabilities, with nearly 75% having critical- or high-severity CVSSv3 scores.

Top targeted vulnerabilities still found success
2023

Global Threat
Intelligence Report

Q4 updates: most recent data & trends by sector

Government sector

Q4 news stories, breaches and ransomware victimology breakout for the government sector including top ransomware, victim locations and recommendations.

Download Government Update

Healthcare sector

Q4 news stories, breaches and ransomware victimology breakout for the healthcare sector including top ransomware, victim locations and recommendations.

Download Healthcare Update

Retail sector

Q4 news stories, breaches and ransomware victimology breakout for the retail sector including top ransomware, victim locations and recommendations.

Download Retail Update

Q3 updates: most recent data & trends by sector

Healthcare sector

Q3 news stories, breaches and ransomware victimology breakout for the healthcare sector including top ransomware, victim locations and recommendations.

Download Healthcare Update

Telecom sector

Q3 news stories, breaches and ransomware victimology breakout for the telecommunucations sector including top ransomware, victim locations and recommendations.

Download Telecom Update

Insurance sector

Q3 news stories, breaches and ransomware victimology breakout for the insurance sector including top ransomware, victim locations and recommendations.

Download Insurance Update

Q2 updates: most recent data & trends by sector

Finance sector

Q2 news stories, breaches and ransomware victimology breakout for the finance sector including top ransomware, victim locations and recommendations.

Download Finance Update

Retail sector

Q2 news stories, breaches and ransomware victimology breakout for the Retail sector including top ransomware, victim locations and recommendations.

Download Retail Update

Education sector

Q2 news stories, breaches and ransomware victimology breakout for the education sector including top ransomware, victim locations and recommendations.

Download Education Update

Q1 updates: most recent data & trends by sector

Technology sector

Q1 news stories, breaches and ransomware victimology breakout for the technology sector including top ransomware, victim locations and trends by month.

Download Technology Update

Transportation & distribution sector

Q1 news stories, breaches and ransomware victimology breakout for the transportation & distribution sector including top ransomware, victim locations and trends by month.

Download Transportation Update

Manufacturing sector

Q1 news stories, breaches and ransomware victimology breakout for the manufacturing sector including top ransomware, victim locations and trends by month.

Download Manufacturing Update
How to Protect Cisco Meraki with XDR

How to Protect Cisco Meraki with XDR

In this post we will show you how you can easily add an additional layer of security by integrating Meraki with XDR. This will allow you to reap the benefits of both feature-rich network technology and best in class security operations without needing to employ highly specialized network and security teams.

How Threat Intelligence And XDR Enhance Small Business Cybersecurity

How Threat Intelligence And XDR Enhance Small Business Cybersecurity

In this post, we will explore the synergistic benefits of small businesses leveraging threat intelligence and Extended Detection and Response (XDR) solutions to help secure their IT environments and sensitive data resources.

Important Cybersecurity Questions For Every Small Business Owner to Ask

Important Cybersecurity Questions For Every Small Business Owner to Ask

This post explores some essential questions you need to ask about your business and cybersecurity posture. Answering them will help you protect your small business from a devastating cyberattack.

We are here to help

Have questions about the report?

We are here to help.

Contact Us

Global Threat Intelligence Report FAQ


What is the Global Threat Intelligence Report 2023?

The Global Threat Intelligence Report 2023 is a comprehensive document released by NTT Security Holdings that highlights the convergence of cyber threats and their physical implications. The report provides insights into the most prevalent attacks of the past year and offers recommendations to protect businesses from evolving threats.

What period does the report cover?

The report covers global attack data collected and analyzed from January 1, 2022, to December 31, 2022.

How often does NTT Security Holdings post updates to the report?

NTT Security Holdings will be posting updates quarterly. The quarterly updates will focus on industries most impacted by cyber attacks. Sign up for our email list or download the report to stay informed about the latest information.

What sectors were particularly vulnerable according to the report?

The integration of technology into infrastructure and supply chains made sectors like Technology, Manufacturing, and Transport/Distribution the most attacked.

I would adjust ‘particularly vulnerable’ to ‘most attacked’. This section covered attacks we observed and not necessarily the overall success of them. We are shifting to use more incident data in the infographics which would reflect more successful attacks but it will be a little too limited for volume use until we fully transition customers over to and ramp up new customers on MDR/XDR.

What types of attacks were most common?

Attacks targeting cloud and Software-as-a-Service (SaaS) platforms continued to increase. Web-based and desktop application threats accounted for a staggering 70% of attacks.

Which Content Management System (CMS) software was most attacked?

WordPress emerged as the most attacked CMS software in the Americas, APAC (Asia Pacific), and EMEA (Europe, the Middle East, and Africa).

What trends were observed in Banking Trojans and Cryptominers?

Banking Trojans experienced a slight decline from the previous year, but Cryptominers saw a resurgence despite the fluctuating value of many cryptocurrencies.

What was the severity of the vulnerabilities exploited by attackers?

Attackers focused on high-impact vulnerabilities, with nearly 75% of them having critical- or high-severity CVSSv3 scores.

How can I access the full report?

For a comprehensive understanding of the latest cyber threat landscape, you can download the complete 2023 Global Threat Intelligence Report from the official website.

Who is NTT Security Holdings?

NTT Security Holdings, a Group company, provides proactive cyber defense and services that make use of gathered human resources and intelligence to protect customers and society. For more than 20 years, the company has helped clients protect their digital businesses by predicting, detecting, and responding to cyber threats, while supporting business innovation and managing risk.

We value your privacy.

We use cookies to enhance your browsing experience, serve personalized content, and analyze our traffic. By clicking "Accept", you consent to our use of cookies.