According to report by ENISA, ransom attacks more than doubled in the EU transportation sector in 2022 v. 2021. This new report analyzes the cyber security landscape in the EU in relation to aviation, maritime, railway and road transport covering the period of January 2021 to October 2022.
2021 2022
Ransomware Incidents 13% 25%
Data breaches/leaks 21% 9%
Malware Reports 11% 6%
55% of incidents were financially motivated while hacktivists accounted for 23%. DDoS attacks increased from 2% to 13%.
15% of the attacks targeted State-backed entities and were largely aimed at the maritime sector and government transport authorities. European airports, railways and transport authorities were among other victims of those attacks, ENISA said.
ENISA acknowledges that its analysis likely under-represents the reality as the non-disclosed incidents may outweigh those made public. despite mandatory reporting.
Jan Lovmand, CTO, BullWall had this to say:
“People in the transportation industry and governments should take the recent report by ENISA seriously and make immediate efforts to improve their cybersecurity measures. Attacks are increasing in frequency, and it is important for organizations to take proactive measures to mitigate the risk of a successful attack.
“Organizations should review their existing cybersecurity programs and assess the effectiveness of their current defenses against ransomware attacks. They should also ensure that all employees are aware of the threat and trained in basic cybersecurity practices, such as keeping software up-to-date and using strong passwords.
“Cybersecurity measures, such as multi-factor authentication, intrusion detection systems, and advanced threat intelligence and containment systems for detecting and responding to potential threats are table stakes in this threat environment.
“In addition, governments should collaborate with industry organizations to develop and implement best practices for cybersecurity in the transportation sector. This includes providing guidance on cybersecurity risk assessments, establishing industry standards, and promoting information sharing to help organizations better understand the evolving threat landscape.”
What is clear from these numbers is that ransomware is what all the cool threat actors are doing. No shock there. That means that you have to make sure that you’re not a target of the cool threat actors. That will make these threat actors less cool and the world a safer place.
Like this:
Like Loading...
Related
This entry was posted on March 23, 2023 at 8:30 am and is filed under Commentary with tags Security. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Not That This Is A Surprise, But Here’s Proof That Ransomware Is The New Cool Thing For Threat Actors
According to report by ENISA, ransom attacks more than doubled in the EU transportation sector in 2022 v. 2021. This new report analyzes the cyber security landscape in the EU in relation to aviation, maritime, railway and road transport covering the period of January 2021 to October 2022.
2021 2022
Ransomware Incidents 13% 25%
Data breaches/leaks 21% 9%
Malware Reports 11% 6%
55% of incidents were financially motivated while hacktivists accounted for 23%. DDoS attacks increased from 2% to 13%.
15% of the attacks targeted State-backed entities and were largely aimed at the maritime sector and government transport authorities. European airports, railways and transport authorities were among other victims of those attacks, ENISA said.
ENISA acknowledges that its analysis likely under-represents the reality as the non-disclosed incidents may outweigh those made public. despite mandatory reporting.
Jan Lovmand, CTO, BullWall had this to say:
“People in the transportation industry and governments should take the recent report by ENISA seriously and make immediate efforts to improve their cybersecurity measures. Attacks are increasing in frequency, and it is important for organizations to take proactive measures to mitigate the risk of a successful attack.
“Organizations should review their existing cybersecurity programs and assess the effectiveness of their current defenses against ransomware attacks. They should also ensure that all employees are aware of the threat and trained in basic cybersecurity practices, such as keeping software up-to-date and using strong passwords.
“Cybersecurity measures, such as multi-factor authentication, intrusion detection systems, and advanced threat intelligence and containment systems for detecting and responding to potential threats are table stakes in this threat environment.
“In addition, governments should collaborate with industry organizations to develop and implement best practices for cybersecurity in the transportation sector. This includes providing guidance on cybersecurity risk assessments, establishing industry standards, and promoting information sharing to help organizations better understand the evolving threat landscape.”
What is clear from these numbers is that ransomware is what all the cool threat actors are doing. No shock there. That means that you have to make sure that you’re not a target of the cool threat actors. That will make these threat actors less cool and the world a safer place.
Share this:
Like this:
Related
This entry was posted on March 23, 2023 at 8:30 am and is filed under Commentary with tags Security. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.