Cyber security: the new face of cyber threats

Corporate IT security can no longer underestimate the growing number of cyber adversaries who, with increasingly sophisticated methods, seek to compromise systems and networks. According to CrowdStrike's Threat Hunting Report, the time it takes attackers to infiltrate a compromised system has decreased significantly. This evolution requires CISOs to adequately prepare for future threats.

Emerging trends in the cyber security landscape

The financial sector in Europe has become a favorite target for cyber attacks, even surpassing the telecommunications and technology sectors. In particular, Iranian-connected hacker groups have carried out intrusions into the telecommunications sector using tools such as Cobalt Strike, PsExec, ProcessHacker, Mimikatz and NetScan. At the same time, eCrime has increased in several sectors, including the financial sector.

Identity-based attacks: a growing threat

Recent trends indicate that cyber attackers are focusing their efforts on identity-based attacks. Over 60% of interactive intrusions were based on the abuse of valid accounts. Additionally, the number of Kerberoasting attacks, a technique that allows cybercriminals to obtain valid credentials for Microsoft Active Directory service accounts, is on the rise. These attacks pose a significant threat to businesses, as attackers do not need sophisticated tools to carry them out.

The challenge of an agile and sophisticated opponent

CrowdStrike's 2023 Threat Hunting Report highlighted that cyber adversaries have become more agile and sophisticated than in previous years, significantly reducing the time it takes to infiltrate systems. To address these threats, it is critical that cybersecurity teams collaborate closely with their partners and develop effective strategies to detect and neutralize breaches at an increasingly rapid pace. Furthermore, cooperation between humans and machines becomes increasingly necessary to cope with the complexity and speed of cyber threats.