- Google’s threat intelligence report says that cybercrime is worse than ever
- Medical care is once again a main objective for cyber attacks
- The state-state actors are using cyber crime to raise money
Despite the generalized coverage of the cyber attacks of the ‘great four’, Russia, China, Iran and the Democratic Popular Republic of Korea (North Korea), the Cyber Rome report of the Google threat intelligence group reveals almost four times more intrusions by financially motivated actors in 2024 in 2024 than the attackers backed by the State.
The report describes the responses of the company’s driving arm in 2024, and reveals that not only national security threats countries should be worried. Any attack against critical infrastructure, regardless of who is behind him, can have devastating effects on people’s lives;
“When electrical networks are interrupted, entire communities remain vulnerable. The effects of cyber crime extend far beyond stolen money or data violations; They were public trust, destabilize essential services and, in the most severe cases, cost costs, ”explains the report.
Medical care remains the upper objective
It will not surprise many that medical care providers remain an incredibly attractive objective for cybercriminals considering the large amount of confidential data they possess, as well as the critical nature of their services, which means that any interruption can be catastrophic.
In fact, the report shows a 50% increase in the participation of medical care in publications in data leakage sites, and if it is a criminal seeking financial gain or an actor backed by the nation that seeks to interrupt Critical infrastructure, the effect on patients is the same;
“The stolen confidential data of an organization and published in a data leakage site can be exploited by an adversary in the same way that the data exfiltrated in a espionage operation can be,” says the report.
The play books of each actor are different, but Google’s report suggests that each of the ‘great four’ complement their income as part of their attacks, mainly implementing ransomware or malware to raise funds.
This has been observed many times, with the Lázaro Group of North Korea launching large -scale cyber attacks, which researchers suggest that it is part of an operation aimed at helping to finance state devices.
