NATION STATE CYBER CRIME isn’t a risk just for businesses in certain sectors anymore. An estimated 90% of Advanced Persistent Threat Groups (APTs) regularly attack organisations outside of the government or critical infrastructure sectors. That puts every business at risk as threat actors seek new ways to obtain information, strike targets and make money. Protecting your company from these five risks will help reduce your chance of trouble from nation-state threat actors.
PHISHING AND SOCIAL ENGINEERING TRAPS
This versatile weapon has opened doors for the bad guys into some of the world’s most secure systems. Phishing has a low barrier to entry, making it perfect for APTs associated with less prosperous countries. As the go-to tactic for launching credential phishing and ransomware campaigns, threats actors know that sophisticated, socially engineered phishing messages are effective.
And they’re right — 97% of employees can’t spot one!
SUPPLY CHAIN THREATS FROM EVOLVING TACTICS AND TARGETS
Nation-state threat actors have steadily stepped up their operations against non-government or military targets. They’re increasingly zeroing in on organisations that retain large amounts of data, provide services or form linchpins in the global supply chain.
About 60% of nation-state activity is directed at IT companies, commercial and manufacturing facilities, and financial services firms.
The preferred weapons of nation-state threat actors — ransomware and malware — are multi-purpose tools that they are adept at wielding. Many nation-state groups pursue financial goals as well as political goals, and ransomware is a fast way for them to make money or obtain data to sell.
Experts estimate that North Korea generates profits of up to $ 1 billion a year from cybercrime.
EXPOSED INFORMATION ON THE DARK WEB
Nation-state threat actors are benefitting from the booming dark web economy. Assets like username and password pairs go for as little as $0.97 per 1,000. It’s easy for them to buy what they need to get the job done in dark web marketplaces, or even find it for free!
50% of the resources utilized in nation-state attacks are easily and cheaply obtained on the dark web.
UNEXPECTED DANGER FROM CYBERCRIME OUTSOURCING
Highly skilled, affordable labour is making it easy for APTs to outsource some operations to unaffiliated cybercrime-as-a-service gangs, camouflaging the true source of threats.
About 58% of experts believe that it is becoming more common for nation-state threat actors to recruit or hire other cyber criminals to do their dirty work, cautioning that a brisk trade in tools and code will strengthen this symbiotic partnership.
Nation-state attacks are more frequent and more dangerous today than ever before. The powerful solutions in our Identity Protector Platform can help reduce risk, educate employees and mount a strong defence against nation-state cybercrime.
If you think you have this covered, that’s great. If not, get in touch, we’re here to help