Check Point Research (CPR), the Threat Intelligence arm of Check Point, has published its 2021 Security Report. The report reveals the key attack vectors and techniques observed by CPR researchers as criminal, political and nation-state threat actors exploited the disruption caused by the COVID-19 pandemic to target organizations across all sectors. It also gives cyber-security professionals and C-Level executives information that they need to protect their organizations against these advanced fifth-generation cyber-attacks and threats.
Highlights of the Check Point Research 2021 Security Report include:
- Double-extortion ransomware attacks rise: in Q3 2020, nearly half of all ransomware incidents involved the threat of releasing data stolen from the target organization. On average, a new organization becomes a victim of ransomware every 10 seconds worldwide.
- Cloud adoption races ahead of security: 2020 saw organizations’ digital transformation programs advance by over five years in response to the pandemic, but public cloud security is still a major concern for 75 percent of enterprises. Also, over 80 percent of enterprises found their existing security tools don’t work at all or have only limited functions in the cloud, showing that cloud problems will continue.
- Remote working is targeted: hackers ramped up ‘thread hijacking’ attacks on remote workers to steal data or infiltrate networks using the Emotet and Qbot trojans, which impacted 24 percent of organizations globally. Attacks against remote access systems such as RDP and VPN also increased sharply.
- Attacks on healthcare sector become an epidemic: monthly cyber attacks per healthcare organization jumped 37 percent in the last 12 months. In Q4 2020, CPR reported that cyber-attacks (especially ransomware attacks) on hospitals had increased by 45 percent worldwide, as criminals believe they are more likely to pay ransoms due to the pressures from COVID-19 cases.
- Mobiles are moving targets: 46 percent of organizations had at least one employee download a malicious mobile application, which threatens their networks and data in 2020. The increased use of mobiles during global lockdowns has also driven growth in banking and information-stealing mobile Trojans.
Check Point’s 2021 Security Report is based on data from Check Point’s ThreatCloud intelligence; from Check Point’s research investigations over the last 12 months; and on recent survey reports by Check Point of IT professionals and C-level executives.