McAfee Enterprise has released its Advanced Threat Research Report: October 2021, examining cybercriminal activity related to ransomware and cloud threats in the second quarter of 2021.
With the shift to a more flexible pandemic workforce and the highly publicised Colonial Pipeline attack, cybercriminals introduced new and updated, threats and tactics in campaigns targeting prominent sectors, such as Government, Financial Services and Entertainment.
Raj Samani, McAfee Enterprise Fellow and Chief Scientist said, “ransomware has evolved far beyond its origins, and cybercriminals have become smarter and quicker to pivot their tactics alongside a whole host of new bad-actor schemes. Names such as REvil, Ryuk, Babuk, and DarkSide have permeated into public consciousness, linked to disruptions of critical services worldwide. And with good measure, since the cybercriminals behind these groups, as well as others, have been successful at extorting millions of dollars for their personal gain.”
Each quarter, McAfee assesses the state of the cyber threat landscape based on in-depth research, investigative analysis, and threat data gathered by the McAfee Global Threat Intelligence cloud from over a billion sensors across multiple threat vectors around the world.
In the second quarter of 2021, McAfee saw the challenges of shifting cloud security to accommodate a more flexible pandemic workforce and an increased workload, which presented cybercriminals with more potential exploits and targets.
According to McAfee Enterprise Advanced Threat research, in Q2 2021, the following cloud threat incidents and targets ranked high among the top 10 reporting countries (United States, India, Australia, Canada, Brazil, Japan, Mexico, Great Britain, Singapore and Germany):
Q2 2021 Threat Activity
Ransomware Focus. The most targeted sector by ransomware in Q2 of 2021 was Government, followed by Telecom, Energy, and Media & Communications.
Attack vectors. In Q2 2021, malware was the technique used most often in reported incidents. Spam showed the highest increase of reported incidents – 250% -- from Q1 to Q2 2021, followed by Malicious Script with 125% and Malware with 47%.
Sector Activity. McAfee Enterprise tracked a 64% increase in publicly reported cyber incidents targeting the Public sector during the second quarter of 2021, followed by the Entertainment sector with a 60% increase. Notably, Information/Communication had a 50% decrease in Q2 2011, with Manufacturing down 26%.
Regions. These incidents surged primarily in the United States and Europe in Q2 2021. The United States experienced the most reported incidents in the second quarter, and Europe saw the largest increases in reported incidents in Q2 with 52%.