Report: Cyber ​​threats as a result of the Ukraine war

Report: Cyber ​​threats as a result of the Ukraine war

Share post

As the current ESET Threat Report T3 2022 shows, there are increasing cyber threats everywhere as a result of the Ukraine war. The cyber war has fully unfolded with new ransomware, wipers, DDoS or brute force attacks on accounts.

IT security manufacturer ESET has published its T3 2022 threat report, which summarizes the most important statistics of ESET detection systems and highlights notable examples from cybersecurity research. The latest edition of the so-called "ESET Threat Report" (September to December 2022) highlights the impact of the ongoing war in Ukraine and its consequences for the world, including cyberspace. The invasion continues to have major impacts on energy prices, inflation, and cyber threats. The ransomware scene is undergoing some of the biggest changes.

Cyber ​​War in Ukraine

Since the beginning of the Russian invasion of Ukraine, ransomware has increased its destructive capabilities. During the last third of the year, several ransomware-like wipers targeting Ukrainian institutions have appeared. “The ongoing war in Ukraine has created a split among ransomware operators. Some of them support aggression, others oppose it. Attackers have increasingly used destructive tactics, such as using wipers that mimic ransomware. In doing so, they encrypt the victim's data - but with no intention of ever providing a decryption key," explains Roman Kováč, Chief Research Officer at ESET.

Brute force attacks against RDP services

The war also encourages brute force attacks against exposed RDP services. The daily average was about 100 million attempts (compared to 1 billion in T2022 2022). Despite the nominal decline in XNUMX, password cracking remains the most popular network attack vector.

Log4j vulnerability still under investigation

The Log4j vulnerability, for which patches have been available since December 2021, continues to rank second in the ranking of external attack vectors. Attack attempts on Log4j increased by nine percent in the third quarter of 2022.

Cryptocurrency scams

The report also explains the impact of cryptocurrency prices and rising energy prices on various crypto threats. Cryptocurrency crimeware threats decreased by 3 percent in T2022 25 and nearly halved year-on-year. Infostealer detections have been declining for both the period under review and for 2022 as a whole.

In contrast, cryptocurrency scams experience a real renaissance in the months of September to December. ESET products blocked 62 percent more phishing websites dealing with cryptocurrencies during this period. Banking malware is also on the rise. Their discoveries doubled compared to the previous year.

Cybercrime campaigns are becoming more sophisticated

The ESET T3 2022 Threat Report also provides an overview of key findings and achievements from ESET researchers. They discovered a MirrorFace spearphishing campaign targeting high-level Japanese political bodies and a new ransomware called RansomBoggs. This targeted several organizations in Ukraine and bears the fingerprints of the APT group Sandworm.

Campaign of the Lazarus Group

ESET researchers also discovered a campaign by the notorious Lazarus Group targeting victims with spearphishing emails containing documents containing fake job offers. One of these decoys was sent to an employee at an aerospace company in the Netherlands.

New wiper discovered

For supply chain attacks, ESET experts found a new wiper and its execution tool. Behind it one suspects the APT group Agrius. They targeted users of an Israeli software suite widely used in the diamond industry.

More at ESET.com

 


About ESET

ESET is a European company with headquarters in Bratislava (Slovakia). ESET has been developing award-winning security software since 1987 that has already helped over 100 million users enjoy secure technology. The broad portfolio of security products covers all common platforms and offers companies and consumers worldwide the perfect balance between performance and proactive protection. The company has a global sales network in over 180 countries and branches in Jena, San Diego, Singapore and Buenos Aires. For more information, visit www.eset.de or follow us on LinkedIn, Facebook and Twitter.


 

Matching articles on the topic

Wireless security for OT and IoT environments

Wireless devices are becoming more and more common. This increases the number of access points through which attackers can penetrate networks. A new ➡ Read more

Professional cybersecurity for SMEs

Managed detection and response (MDR) for SMEs 24/7, 365 days a year. The IT security manufacturer ESET has expanded its offering ➡ Read more

Prevent malicious software from starting

A cyber protection provider has added a new feature to its security platform. It improves cybersecurity by preventing the launch of malicious or ➡ Read more

Pikabot: camouflage and deceive

Pikabot is a sophisticated and modular backdoor Trojan that first appeared in early 2023. His most notable quality lies in ability ➡ Read more

Ransomware-resistant WORM archives for data backup 

A data archive is a must for every company. Few people know: An active WORM archive can help to streamline data backup, ➡ Read more

A comeback from Lockbit is likely

It is fundamentally important for Lockbit to be visible again quickly. Victims are presumably less willing to pay as long as there are rumors ➡ Read more

Danger of election manipulation through cyber attacks

Cyberattackers are attempting to influence elections around the world using generative AI technology. The latest findings from the Global Threat Report ➡ Read more

Detect and defend against threats

In today's digitalized business landscape, combating threats requires a continuous, proactive and holistic approach. Open Extended ➡ Read more