Ransomware and vulnerability exploitations together were able to “imprison” businesses in 2021, according to a recent IBM report.
The X-Force Threat Intelligence Index revealed how cyber-attacks from last year caused significant burdens to the global supply chains, with manufacturing emerging as the most targeted industry.
The 2022 report showed that the Middle East and Africa region was the fourth-most attacked region worldwide, while the most attacked countries in the Middle East and Africa were the UAE, Saudi Arabia and South Africa.
According IBM’s threat intelligence report, ransomware was the dominant attack type observed across cyber incidents in the UAE. The number one cause of attacks on UAE organisations was attackers exploiting known and unpatched vulnerabilities in the vast majority of incidents X-Force observed.
The 2022 IBM Security X-Force Threat Intelligence Index maps new trends and attack patterns IBM Security observed and analysed from its data – drawing from billions of datapoints ranging from network and endpoint detection devices, incident response engagements, phishing kit tracking and more – including data provided by Intezer.
IBM also found that ransomware persisted as the top attack method observed globally in 2021, with ransomware groups showing no sign of stopping, despite the uptick in ransomware takedowns.
According to the 2022 report, the average lifespan of a ransomware group before shutting down or rebranding is 17 months.
Ransomware and server access attacks were the top attack types observed in the Middle East and Africa, tying for first place each representing 18% of attacks. Misconfiguration followed closely at 14%.
The report also revealed that 50% of attacks against businesses in the Middle East and Africa were caused by unpatched vulnerabilities, exposing businesses’ biggest struggle– patching vulnerabilities.
Furthermore, it showed that cybercriminals are laying the groundwork to target cloud environments, with the 2022 report revealing a 146% increase in new Linux ransomware code and a shift to Docker-focused targeting, potentially making it easier for more threat actors to leverage cloud environments for malicious purposes.
“Cybercriminals recognised the opportunity to capitalise on the rapid digital adoption in the UAE and took full advantage of unpatched vulnerabilities to successfully infiltrate organisations,” said Wael Abdoush, General Manager, IBM Gulf & Levant and Pakistan.
As cybercriminals became increasingly sophisticated, open hybrid cloud environments can provide an opportunity for businesses to enhance and extend their visibility into suspicious activity on their networks and more quickly respond to cyber threats in their environments.”
