The world is entering a new era of cyber threats – News Center

On February 23, 2022, the world of cybersecurity entered a new era, that of hybrid warfare, when Russia launched both physical and digital attacks against Ukraine. It is in this context that Microsoft unveils the 2022 edition of the Digital Defense Report.

Based on data from around the world, spanning June 2021 to June 2022, this report highlights the current state of cybercrime, the rise in state-to-state cyberattacks, threat trends such as cyber influence operations. The Digital Defense Report is also an opportunity to make recommendations on how to improve cyber-resilience and strengthen digital defense.

With 8,500 cybersecurity experts and an ecosystem of 15,000 specialist partners, Microsoft has a unique perspective on the state of threats in the cyber world. Indeed, every day, more than 43 trillion security signals are analyzed by our tools and teams. This insight into the scope and scale of the threat landscape enables action to be taken participating in the dismantling of cybercrime – to date, Microsoft has taken down more than 10,000 domains used by cybercriminals and 600 used by state actors – and in responding to possible vulnerabilities – 93% of ransomware incidents we responded to revealed insufficient controls over privileged access and lateral movement.

Among the lessons of the 2022 edition of the Microsoft Digital Defense Report, we can note:

As cyber defense improves, attackers adapt their techniques.

  • Human-operated ransomware is the most common attack. A third of targets are successfully compromised based on this technique and 5% of them give in to the ransom. Page 7.

  • Over the past year, the number of password attacks has increased by 74%, to 921 attacks every second. Page 2.

The deployment of cyber weapons in Ukraine’s Hybrid War marks the dawning of a new era of conflict.

  • 90% of Russian attacks detected in the past year targeted customers in NATO member states. Page 37.

  • The sectors most affected by state attacks concern ESNs (22%), Think Tanks and NGOs (17%), educational establishments (14%) and governments (10%). Page 35.

With the acceleration of digital transformation, the security of digital infrastructures is more important than ever.

  • Attacks against Remote Device Management devices – notably used to manage a fleet of IoT tools such as printers, webcams, air conditioning or building access control – are on the rise, with more than 100 million attacks recorded in May 2022 – a fivefold increase over the past year. Page 62.

  • Microsoft sees a steady year-over-year increase in phishing emails. Since March 2022, the war in Ukraine has become a new bait for conducting phishing campaigns. Page 22.

Influencer operations use new methods and technologies, making their campaigns to erode trust more effective.

  • Cyber ​​influence operations are increasingly used by some states to shape opinion, discredit their adversaries, foster discord and distort reality. Page 71.

  • Cyber ​​influence operations are often built in 3 steps: pre-positioning so that fakes are available on the Internet before the operation, the launch itself and finally the amplification. Page 74.

Understanding the risks and benefits of digital transformation becomes crucial for better resilience.

  • Good digital usage practices remain the best defense for more security, while the cloud offers the best physical and logical security against cyberattacks. Page 86.

  • 52% of companies use little or no endpoint detection and response (EDR) solutions. Page 90.

The billions of signals we analyze from our global ecosystem of products and services reveal the ferocity, scope and scale of digital threats across the globe. In the face of the gravity of the current cyber threat, it is important to remember that we are all entitled to take measures to protect ourselves, our organizations and our companies against digital risks. At Microsoft, we believe it is our responsibility to protect digital systems and promote secure computing environments for everyone, everywhere.”
– Tom Burt, Vice President, Customer Security & Trust, Microsoft Corporation

Retrouvez ici l’ensemble des données et enseignements du Digital Defense Report 2022 de Microsoft.

Leave a Comment