Kaspersky shared its insights on cyber threat trends in META. Kaspersky shared the developments in the Middle East, Turkey and Africa (META) region and the worldwide digital threat environment at the 8th Cyber Security Weekend – META 2023 event, which was held in Kazakhstan this year. Kaspersky experts shared their insights on the biggest cyber threats specifically targeting governments, businesses and industrial organizations and the trends that will affect the cybersecurity landscape in the future. Artificial intelligence, the impact of corporate data on the Darknet, the risks of deepfakes and industry-specific critical threats were among the topics discussed at the event. Also of interest was the information shared about Kaspersky's “Cyber Immunity” approach, which opens up a way to create solutions that should not be compromised and that minimize the number of potential vulnerabilities.
The cyber threat landscape continues to evolve. There are many factors to consider, such as cloud security breaches, whose risks will continue to increase in 2023. There are also growing concerns about the security of IoT devices. Attackers will target IoT devices to access users' personal data and networks. There will also be an increase in artificial intelligence-assisted cyber attacks. Attackers will use machine learning algorithms and other artificial intelligence technologies to identify vulnerabilities and launch more sophisticated attacks. Supply chain attacks, which are becoming more and more common, will continue to increase in 2023. Attackers will target third-party vendors and suppliers to gain access to their customers' networks and data.
Head of META Global Research and Analysis Team (GReAT), Dr. “Given the rapidly expanding limits of the threat landscape and the ever-increasing number of new digital devices, it is not surprising that we detect more than 400.000 malicious files per day, and that number is increasing every year,” says Amin Hasbini. It is critical that individuals, businesses and governments implement strong cybersecurity measures to protect their systems and data from these evolving threats, take precautions against emerging threats, and follow the latest security trends and best practices and take proactive measures accordingly.
Gradual increase in phishing attacks
Kaspersky, which delves into social engineering cyber attacks, shared information about the most common phishing attacks in the META region. Comparing the first quarter of 2022 with the first quarter of 2023, it is aimed at users in Egypt (49%), UAE (33%), Qatar (88%), Oman (28%), Kuwait (27%) and Bahrain (20%). Increases in phishing attacks have been detected. On the other hand, phishing attacks in Saudi Arabia saw a slight decline of 2022% in the first quarter of this year compared to the same period of 1.
In the African region, phishing attacks increased in South Africa (2022%), Nigeria (2023%) and Kenya (7%) in the first quarter of 53 compared to the first quarter of 87. In Turkey, an increase of 2022% was observed in the same period of 2023 compared to the first quarter of 53.
ransomware
According to Kaspersky data, the number of ransomware attacks targeting organizations in the META region in the first quarter of 2023 decreased significantly compared to the same period in 2022. This decline was observed in the Middle East region, where the number of B2B ransomware detections fell by 61%. In the same period, while ransomware attacks decreased by 59% in Turkey, they decreased by 65% in Africa.
“This decline in ransomware attacks in the META region does not mean that the danger has disappeared,” said Dmitry Galov, Kaspersky Senior Security Researcher. We can clearly see a clear trend where ransomware is becoming more sophisticated and targeted, leaving victims with more threats. Ransomware groups have come a long way in recent years, from disorganized gangs to businesses with the hallmarks of a full-fledged industry. These groups continue to evolve, adopting techniques such as developing cross-platform ransomware, embedding self-propagating capabilities, and even exploiting zero-day vulnerabilities that were previously only available to APT actors. This explains why this software remains one of the top threats to business, even as detection rates are declining. This is a global trend, but the decline is higher in regions that do more to put in place appropriate safeguards at the government and organizational levels. Ransomware attacks remain a critical threat for countries that have not made much progress in cybersecurity.”
Rapid growth of banking-targeted Trojan attacks
New malware families and cyberattack campaigns contributed to the widespread increase in banking-targeted Trojan attacks during the same period of 2022 compared to Q1 2023. The country with the highest rate of this increase was Turkey with a rate of 238%. In general, banking-targeted Trojan attacks in the Middle East in the first quarter of 2023; An increase was observed in Kuwait (218%), Egypt (186%), Saudi Arabia (168%), Oman (115), Qatar (99%), UAE (67%) and Bahrain (33%). Increases were also seen in Nigeria (268%) and Kenya (129%).