June 22, 2023
1 min read

China-linked APT groups dominate nation-state threat activity

Despite efforts in 2022 to make it more difficult for threat actors to abuse the tool, the Cobalt Strike tool grows in popularity among cybercriminals and ransomware actors….reports Asian Lite News

China-linked APT groups, including Mustang Panda and UNC4191, are the most active in targeting nation-states, producing nearly 79 per cent of all detected threat activity in the first quarter of 2023, a new report showed on Wednesday.

According to the cybersecurity company Trellix, APT groups will continue cyber espionage and disruptive cyberattacks in tandem with physical military activity.

“For both leading and developing countries, we see risks to critical infrastructures like telecommunications, energy, and manufacturing by notable APT groups — a warning to public and private organisations to deploy modern protections to stay ahead of rapidly evolving threats,” said John Fokker, Head of Threat Intelligence, Trellix Advanced Research Center.

Moreover, the report said that motivations for ransomware are still financial — reflected in the Insurance (20 per cent) and Financial Services (17 per cent) sectors having the most detections of potential attacks.

The most common leak site victims are US-based (48 per cent) mid-sized businesses with 51-200 employees (32 per cent) and $10-50M in revenue (38 per cent).

Despite efforts in 2022 to make it more difficult for threat actors to abuse the tool, the Cobalt Strike tool grows in popularity among cybercriminals and ransomware actors.

The report found Cobalt Strike in 35 per cent of nation-state activity and 28 per cent of ransomware incidents, nearly doubling from the fourth quarter of 2022.

Further, the report mentioned that attacks on Amazon, Microsoft, and Google’s cloud infrastructure are on the rise.

Though more sophisticated attacks involving multifactor authentication, proxy penetration, and API execution continue, the dominant attack technique employs valid accounts, with valid accounts accounting for twice as many detections as any other vector.

ALSO READ: India slams China for blocking ‘terror tag’ on Sajid Mir

Previous Story

Gen Munir joins council formed for economic revival

Next Story

Microsoft to build quantum supercomputers

Latest from -Top News

US-India ties is a slow-motion catastrophe

For the first time in two decades, Trump’s actions, statements, and coercive tone have made relations with the US a combustible domestic political issue in India, writes Manoj Menon The post-globalisation uncertainty

Modi Welcomes Marcos Jr to Delhi

PM Modi Welcomes Philippines President Marcos Jr to Strengthen India-Philippines Ties…reports Asian Lite News Prime Minister Narendra Modi on Tuesday warmly welcomed Philippines President Ferdinand R. Marcos Jr at Hyderabad House in

Is Bangladesh Turning Into a Theocratic State?

The rise of radical Islamic influence under Yunus’s watch threatens to transform Bangladesh from a secular democracy into a theocratic state….writes Anna Mahjar-Barducci Nobel Peace Prize laureate Muhammad Yunus’s transition from economist

Post-370 Kashmir Reinvents Itself

The developments suggest that Kashmir’s post-abrogation journey is not merely political – it is profoundly social, economic, and cultural….writes Shashikant Trivedi Six years after the abrogation of Article 370, Jammu and Kashmir

Munir’s Soft Coup in Uniform

From Beijing to Washington, Asim Munir has emerged as Pakistan’s most visible face on the international stage….reports Asian Lite News As Pakistan’s powerful Army Chief, Field Marshal Asim Munir, concluded yet another
Go toTop

Don't Miss

China slips into deflation

According to analysts, this adds to the pressure on the

Congo new hunting ground for Chinese firms in search of gold

BM Global Business, Congo Blueant Mineral, Oriental Resources Congo, Yellow