Cyber Threat Surge: Trend Micro Reports Blocking 160 Billion Incidents In 2023

In a recent disclosure, global cybersecurity titan Trend Micro has unveiled a 10% surge in the total threats it managed to block in 2023, indicating a shift towards more sophisticated attack methodologies by cybercriminals. The company successfully intercepted 161 billion threats throughout the year, marking a significant rise from the 82 billion threats recorded five years prior. Despite a decrease in threats blocked via email and web reputation services by 47% and 2% respectively, there was a notable 35% increase in interceptions by Trend's File Reputation Service (FRS). This suggests a strategic pivot by attackers towards fewer but more high-profile targets using advanced techniques.

The comprehensive report shed light on the evolving landscape of cyber threats, revealing that Advanced Persistent Threat (APT) actors are diversifying their tactics, especially in circumventing defenses. A staggering 349% year-on-year increase was observed in email malware detection, whereas detections for malicious URLs and phishing URLs saw a decline of 27%. Furthermore, business email compromise detections rose by 16% year-over-year, contrasting with a 14% decrease in ransomware detections. The findings also pointed to an uptick in sophisticated ransomware strategies such as remote encryption, intermittent encryption, and attacks targeting unmonitored virtual machines and employing multiple ransomware strains.

One of the standout revelations from the report was the identification of endpoint detection and response (EDR) systems as key targets for adversaries seeking to bypass these critical defense mechanisms. In terms of geographical impact, Thailand and the United States emerged as the top two countries affected by ransomware, with the banking sector bearing the brunt of these attacks. Additionally, risky cloud app access was highlighted as the predominant risk event detected by Trend Micro.

The report also underscored Trend Micro's proactive stance against emerging threats through its Zero Day Initiative, which uncovered 1,914 zero-day vulnerabilities in 2023—a 12% increase from the previous year. Among these were 111 vulnerabilities related to Adobe Acrobat and Reader, with Windows applications being the most exploited due to these vulnerabilities.

In response to these alarming trends, Trend Micro has issued guidance for network defenders to bolster their cybersecurity posture. The company advocates for collaboration with reliable security vendors that offer comprehensive platform approaches and emphasizes the importance of enhancing security operations center (SOC) efficiency. Additionally, it recommends timely patching and upgrading of operating systems and applications, implementing robust security protocols, and adopting strategies for early detection of ransomware attacks within the attack lifecycle.

This detailed analysis by Trend Micro serves as a crucial reminder of the ever-evolving nature of cyber threats and underscores the necessity for continuous vigilance and adaptation in cybersecurity strategies to safeguard against sophisticated attacks.