"Hackers-for-Hire Drive Evolution of Threat Landscape"

The European Union Agency for Cybersecurity (ENISA) has released its annual report on the state of the cybersecurity threat landscape. The 9th annual ENISA Threat Landscape (ETL) report covers April 20 to July 2021. The report provides recommendations alongside identified threats, attack techniques, notable incidents, and trends. The constantly growing online presence, the transitioning of traditional infrastructures to online solutions, advanced interconnectivity, and the abuse of new capabilities provided by emerging technologies have all contributed to the increased sophistication, complexity, and impact of cybersecurity threats. Ransomware attacks are cited as the main threat for that period of reporting, followed by malware, cryptojacking, email-related threats, data threats, threats against availability and integrity, disinformation/misinformation, non-malicious threats, and supply chain attacks. The COVID-19 crisis opened doors for adversaries to use the panic and uncertainty surrounding the pandemic as lures in their attack campaigns. Financial gain appears to be the main driver behind these activities. Threat actors have been observed using various techniques, including, but limited to, Ransomware-as-a-Service (RaaS)-type business models, multiple extortion ransomware schemes, Business Email Compromise (BEC), Phishing-as-a-Service (PhaaS), and Disinformation-as-a-Service (DaaS) business models. In the discussion of cybersecurity threat actors, the report focused on state-sponsored attackers, cybercriminals, hacker-for-hire actors, and hacktivists who are integral components of the threat landscape. This article continues to discuss the key findings and development of the ETL report.

Homeland Security News Wire reports "Hackers-for-Hire Drive Evolution of Threat Landscape"