Sophos 2019 Threat Report unveils the rise of the hand-delivered, targeted cyberattacks as criminals stalk victims to bank millions

January 16, 2019
Sophos 2019 Threat Report unveils the rise of the hand-delivered, targeted cyberattacks as criminals stalk victims to bank millions

Oxford, U.K. – Nov. 14, 2018 – Sophos (LSE: SOPH) today propelled its 2019 Threat Report giving bits of knowledge into developing and evolving cybersecurity trends. The report, delivered by SophosLabs researchers, investigates changes in the risk scene in the course of recent months, revealing patterns and how they are relied upon to affect cybersecurity in 2019.


The threat landscape is undoubtedly evolving; less skilled cyber criminals are being forced out of business, the fittest among them step up their game to survive and we’ll eventually be left with fewer, but smarter and stronger, adversaries. These new cybercriminals are effectively a cross-breed of the once esoteric, targeted attacker, and the pedestrian purveyor of off-the-shelf malware, using manual hacking techniques, not for espionage or sabotage, but to maintain their dishonorable income streams.” – Joe Levy, CTO, Sophos, as referenced in the SophosLabs 2019 Threat Report


The SophosLabs 2019 Threat Report centers on these key cybercriminal practices and assaults:

Entrepreneur cybercriminals are swinging to focused ransomware assaults that are planned and harvesting a large number of dollars in payment –  These assaults are not quite the same as ‘shower and ask’ style assaults that are naturally appropriated through a large number of messages.

Cybercriminals are utilizing promptly accessible Windows frameworks organization tools – This year’s report reveals a move in danger execution, as more standard assailants presently utilize Advanced Persistent Threat (APT) methods to utilize promptly accessible IT devices as their course to progress through a framework and finish their main goal – regardless of whether it’s to take delicate data off the server or drop ransomware:

  • Transforming administrator instruments into cyberattack devices

In an unexpected curve, or Cyber Catch-22, cybercriminals are using fundamental or worked in Windows IT administrator apparatuses, including Powershell records and Windows Scripting executables, to send malware assaults on clients.

  • Cybercriminals are playing Digital Dominos

By tying together an arrangement of various content sorts that execute an assault toward the end of the occasion arrangement, hackers can actuate a chain response before IT managers identify a danger is operational on the system, and once they break in it’s hard to prevent the payload from executing.

  • Cybercriminals have adopted more up to date Office exploits to draw in unfortunate casualties

Office abuses have for quite some time been an assault vector, yet as of late cybercriminals have cut  loose old Office report exploits in favor of newer ones.

  • EternalBlue becomes a key instrument for cryptojacking assaults

Fixing refreshes showed up for this Windows risk over a year prior, yet the EternalBlue abuse is as yet a most favored of cybercriminals; the coupling of EternalBlue to cryptomining programming diverted the action from an irritation leisure activity into a conceivably worthwhile criminal vocation.

  • The continued threat of mobile and IoT malware

As homes and organizations embrace more web associated gadgets, offenders have been conceiving better approaches to seize those gadgets to use as hubs in immense botnet assaults. Somewhere else, Mirai Aidra, Wifatch, and Gafgyt conveyed a scope of mechanized assaults that commandeered arranged gadgets to use as hubs in botnets to participate in disseminated forswearing of-benefit assaults, mine cryptographic money and invade systems.



About the author

Leave a Reply