2024H1 Threat Review

Perils in the Periphery

Vulnerabilities, Threat Actors and Ransomware in the Unmanaged Perimeter

New threat actors have emerged. So have new techniques. Forescout Research – Vedere Labs widens its lens with a macro look at the most pressing cybersecurity risks of the year so far. From digital extortion to state-sponsored intrusions, we find threat patterns and isolate changes in cyber attack behavior. Most importantly, we can see how and where they are doing it. Right now, it is happening in your unmanaged network perimeter via VPNs and network appliance vulnerabilities.

Which VPN vendors? Who are the threat actors? Which countries and industries are most targeted? See all. Know more.

 

Get The Report

 

43%

Vulnerability Growth

15/Day

Ransomware Attacks

55%

Growth in Active Threat Groups

Explore Today’s Most Vulnerable Devices

Healthcare, manufacturing and critical infrastructure industries, listen up. As we do every year, we share our knowledge from our Riskiest Connected Devices research across critical IT, IoT, OT and IoMT assets. Join this on-demand webinar led by Daniel dos Santos, Head of Security Research, Vedere Labs, who discusses exclusive findings and insights into asset risk. He also shares the most important and up-to-date ways to mitigate these risks in 2024.

Watch Now

Countries Most Targeted

US, Germany, India, Australia, UK, France, Italy, China, Japan, Canada

Ransomware

Vedere Labs observed 3,085 attacks in 2024H1, an increase from 2,899 during the same period last year which is an increase of 6%. This averages to 441 attacks per month or 15 per day. To better understand the context of today’s digital extortion, read our recent blog “The Current State of Ransomware Risk.”

Get Full Report

Industries Most Targeted

The top 10 targeted industries remain the same as last year with minor shifts in ranking. For example, healthcare used to be fifth and is now seventh. Government, financial services, technology, telecommunications, and healthcare are the Top 5. Interestingly, financial services dropped 36% from 20231H.

Threat Actor Categories

Vedere Labs tracks information on 740 threat actors —387 (52%) had updates in 2024H1. The live information about all threat actors is available on our website. These 387 actors are predominantly cybercriminals (50%), including ransomware groups, followed by state-sponsored actors (40%) and hacktivists (10%).

Read the Blog

Dive Into the Research

Stay on top of this year’s trends, so you can know where to focus your cybersecurity and OT defenses. Get all the data and analysis including:
 
  • What’s really happening in state-sponsored activity
  • Threat actor trends by name including new threat actor groups
  • Why VPNs and network appliances are being targeted at an accelerated rate
Read Report

Strategic Recommendations:
How Forescout Can Help

  • Risk and exposure management: Identify, quantify and prioritize cybersecurity risk. Start by discovering and assessing every connected asset to gain real-time awareness of your attack surface.
  • Network security: Continuously monitor all connected assets to govern network access, using real-time traffic visibility to manage segmentation and dynamic control policies to mitigate and remediate risk.
  • Threat detection and response: Detect, investigate and respond to true threats and incidents using threat detection and response capabilities to collect telemetry and logs, correlate attack signals, generate high-fidelity detections and enable automated responses.
Schedule a Demo
Demo RequestForescout PlatformTop of Page