Bitdefender Threat Review: November 2023

Bitdefender Threat Review: November 2023

In the ever-evolving world of online security, safeguarding data across different cloud platforms like Google Cloud, Amazon Web Services (AWS), and Microsoft Azure has become a critical concern. This task requires a heightened level of expertise from the technical teams responsible for keeping our digital spaces secure. While experts have a good handle on how cyber threats move within traditional computer environments, the rise of hybrid cloud systems has introduced new layers of complexity.

Recent findings by Bitdefender Labs have shed light on some previously unknown methods that cyber attackers use to go from compromising one device to breaching an entire network. This worrying development could potentially result in ransomware attacks or the unauthorized extraction of sensitive data (you can find more details in our research or watch our on-demand webinar). Essentially, from one compromised device, cybercriminals could take various paths: they might move to other similar devices, gain access to cloud platforms with special permissions, or decrypt locally stored passwords to extend their attack beyond the Google ecosystem.

To effectively deal with these challenges, it's crucial to use the right tools to detect these subtle patterns of movement across different cloud platforms. Solutions like Bitdefender GravityZone XDR are particularly effective in this regard. Moreover, gaining the knowledge needed to combat these sophisticated threats in hybrid environments is where managed security services, like Bitdefender MDR, come in. These services provide ongoing monitoring, proactive threat detection, and expert responses, complementing the efforts of in-house security teams and ensuring a robust defense against the ever-changing threats in hybrid cloud setups.

During the analysis of malware detections spanning from October 1 to October 31, a total of 226 ransomware families were identified. The monthly count of detected ransomware families may fluctuate, influenced by the ongoing ransomware campaigns occurring in various countries.

Within our dataset for the month, ransomware was identified in a total of 145 countries, emphasizing its pervasive global threat. The following is a compilation of the ten countries most significantly affected by ransomware. Notably, many ransomware incidents are opportunistic, and the frequency of detections tends to correlate with the size of the population in a given country.