Hackers are getting smarter, and the number of cyberthreats is only going to rise in 2023. With the number of new threats individuals and organizations are seeing on a daily basis, cybersecurity experts are growing weary. As a majority of these attacks begin to surpass traditional security systems, historically complacent cybersecurity defenses must adapt to stop new threats in their tracks.
Menlo Security’s Menlo Labs research team continues to see that highly evasive adaptive threats (HEAT) attacks are some of the most prolific threats made against security systems in the past year. A HEAT attack is a class of cyberthreat that leverages web browsers as the attack vector and employs various techniques to evade multiple layers of detection in current security stacks. These attacks are hard to spot and even harder to thwart once one has breached a network. The key to protecting both individual and corporate devices against these attacks is understanding what they may look like and learning how to prevent them.
In a recent survey, we found that a third of organizations experience a ransomware attack at least once a week, with one in 10 experiencing them more than once a day. Let’s take a look at the top HEAT attacks of 2022 and see what was learned from each attack.
Oktapus
A large-scale supply chain attack, codenamed Oktapus, impacted over 130 organizations. The Oktapus gang used highly targeted spear phishing campaigns to obtain Okta identity credentials and two-factor authentication (2FA) codes from users of the targeted organizations.
The attackers targeted employees of companies that are Okta customers by sending a text message or an e ..
Support the originator by clicking the read the rest link below.
