2024

Global Threat Intelligence Report

Growing attack surface and threat complexity mixed with reduced staffing and budgets is creating a perfect storm for security professionals

Key Insights from the 2024 Report

In 2023, we witnessed ransomware payments reach an all-time high of over $1 billion after a decline in 2022.
Malware continues to evolve to gain initial access, evade detection, and maintain persistence.

Top Attacked Sectors

Manufacturing, technology, and transport & distribution remained in the top 5 as we continue to see attacks against critical infrastructure and supply chains prioritized by adversaries and facing significant risk.

Ransomware Telemetry

United States and Manufacturing companies top the charts. Lockbit claimed the most victims for the second year in a row. We continue to see small and medium-sized businesses (SMBs) face significant risk, with over 50% of victims having less than 200 employees.

Malware Telemetry

Malware continues to evolve to gain initial access, evade detection, and maintain persistence. The modularization of malware, and the increase in adversaries living off the land, highlights the need for organizations to have more comprehensive protections in place.

Vulnerability Intelligence

Organizations should leverage these insights to assess vendors and limit what is allowed within their environments. Many of the most popular vendors by market share and reputation are also among the highest in announced Common Vulnerabilities and Exposures (CVE) each year.

Exploitation Insights

Last year, we highlighted the rapid integration of exploit code by malware and botnets for high-severity vulnerabilities, often aided by generative AI. We observed threat actors leveraging critical 0days for substantial gains in 2023, aligning with platforms targeted by vendors with the highest CVE volume.

Know the threats. Protect your business.

The cybersecurity landscape is rapidly evolving while security resources remain stagnant or decline, leaving organizations vulnerable to routine threats like exploitation, malware, and escalating ransomware and extortion incidents. Manufacturing suffers the most attacks, while Trojans persist as significant threats. Proactive security measures are urgently needed to counter these challenges.

Most Recent Data & Trends by Sector

Q1 updates

Vulnerabilities

Discover the critical security insights from Q1, including the top vendor CVEs, significant browser vulnerabilities, and a detailed analysis of the most exploited operating systems and vendors. Stay informed and protect your systems with this essential knowledge.

Download Vulnerabilities Update

Malware

Download this comprehensive infographic to gain valuable insights into the malware landscape of Q1. Dive deep into detailed information on file types, trending malware, and their severity levels. Additionally, discover noteworthy malware campaigns that have significantly impacted the cybersecurity landscape.

Download Malware Update

Ransomware

Download our detailed infographic from Q1 to uncover the top ransomware threats, victim locations, and data disclosure incidents. See how sectors like manufacturing remain at the forefront of these attacks, and gain key insights to enhance your cybersecurity strategy.

Download Ransomware Update
Samurai Threat Intelligence - what is it and how our customers get value

Samurai Threat Intelligence - what is it and how our customers get value

Threat intelligence is a critical component of any cybersecurity approach, it assists in identifying and tackling existing and new waves of cyber threats. But not all threat intelligence is created equal.

Integrating Microsoft Sentinel with Samurai XDR for Enhanced Threat Detection

Integrating Microsoft Sentinel with Samurai XDR for Enhanced Threat Detection

Microsoft Sentinel, a cloud-native SIEM platform, offers robust security analytics and integration with Azure, but its complexity can be challenging for smaller organizations. Integrating Sentinel with Samurai XDR simplifies threat detection and response, offering a streamlined, cost-effective solution with advanced machine learning and broader threat intelligence.

Impact of XDR on Cyber Incident Response Times

Impact of XDR on Cyber Incident Response Times

Extended Detection and Response (XDR) revolutionizes cybersecurity by enhancing incident detection and response times through AI and machine learning. It provides real-time threat detection, automates response processes, and integrates various security tools for streamlined operations. XDR also supports proactive threat hunting, significantly reducing the time and resources needed for effective cyber incident response.

Have questions about the report?

We are here to help.

Contact Us