ESET reveals top cyber threats of 2024 thus far

ESET has published its Threat Report for the first half of 2024, providing new insights into the cyber threat landscape faced by businesses and individuals worldwide. The report highlights several significant trends and developments in cybersecurity. This includes the increasing use of generative AI tools in cybercrime and the need for vigilance as cybercriminals use more dynamic and sophisticated methods against their targets.

  • Wednesday, 2nd October 2024 Posted 1 week ago in by Phil Alsop

The report reveals a spectrum of sophisticated cyber threats across multiple regions, showcasing the global scale and urgency of today’s cybersecurity challenges.

Among these is the rise of GoldDigger and GoldDiggerPlus malware, which targets Android and iOS devices. Initially emerging in Southeast Asia, these threats have now spread to other regions, including Latin America and South Africa, where they have been found impersonating financial apps to steal facial recognition data for fraudulent transactions.

“The latest developments show the critical need for advanced cybersecurity frameworks that can adapt to the evolving tactics, especially as cybercriminals expand their reach across borders,” says Adrian Standford, Group CTO of ESET Southern Africa. “It is essential for businesses and individuals to implement robust security protocols and continuously monitor their systems to safeguard their digital assets.”

The Ebury botnet, previously examined in ESET's 2014 white paper Operation Windigo, remains dangerous, even years later. Compromising nearly 400,000 Linux and Unix servers worldwide. This botnet poses significant risks to businesses by facilitating cryptocurrency and credit card theft through advanced adversary-in-the-middle attacks. While this threat is particularly concerning for organisations relying on these operating systems, it also serves as a reminder of the importance of comprehensive cybersecurity strategies.

Another critical issue highlighted is the exploitation of vulnerabilities in WordPress plugins by cybercriminal groups like the Balada Injector gang. With over 20,000 websites affected globally, this threat highlights the ongoing risks associated with widely used content management systems.

The growing use of generative AI tools has not gone unnoticed by cybercriminals, who are increasingly leveraging the popularity of AI to distribute malware. The ESET Report The report details how malware disguised as AI assistants and tools are being used to steal social media credentials and cryptowallet information, reflecting a concerning trend where innovation in technology is paralleled by innovation in cybercrime.

Standford says the findings of the H1 Threat Report shows that there is a need for ongoing cybersecurity awareness and education together with proactive security measures, and robust defence strategies. “In an interconnected digital world, South African enterprises should look at prioritising the implementation of advanced security measures, such as AI-driven threat detection and multi-layered defence systems. Whether it's fortifying systems against malware, securing financial transactions, or protecting personal data, it’s imperative that businesses adopt cutting-edge solutions to stay ahead of cyber threats.”

Humans may do a lot less of the testing themselves in the future, but they will still have to peer review software output, say both C-Suite and...
F5’s 2024 State of Application Strategy report: API Security reveals gaps in API protection and urgent need for comprehensive security measures.
New data reveals that advancements in AI are a major driving force behind the surge in tech investments, as it helps prove ROI for businesses.

CIOs sound alarm on network security as a top priority

Posted 12 hours ago by Phil Alsop
Survey of 200 CIOs and Senior IT professionals finds majority of respondents desire a single integrated platform for networking, AI and security to...
85% of brands haven't deployed AI extensively across the service function, despite 80% of consumers wanting AI in customer service.

AI adoption surges

Posted 14 hours ago by Phil Alsop
Digital Realty has unveiled the findings from its "The State of Data and AI in Europe" report; a European spin-off of the company’s recently...

Data consumption under scrutiny

Posted 14 hours ago by Phil Alsop
New survey data from Cohesity reveals that consumers surveyed worldwide are highly concerned about the information companies collect from them -...
71% of “novices” perceive the threat of security incidents to be growing over time, compared with 28% of “leaders”.