In 2016, fileless attacks such as PowerWare and the alleged hack against the Democratic National Committee (DNC) stole sensitive information and global headlines. In 2017, WannaCry, NotPetya and BadRabbit demonstrated ransomware’s global ubiquity.
Then, 2018 kicked off, the Spectre and Meltdown vulnerabilities offered an ominous start to a year that many thought would be marred by high-profile, global-scale cyberattacks. In some respects, the prognosticators were correct. Billions of personal records were stolen in 2018, unearthed in breaches that successfully targeted household names in government, technology, healthcare, travel and hospitality. Compounding the problem has been increased geopolitical tension between western democracies and countries like Russia, China and North Korea.
While 2016 may have been “The Year of the Fileless Attack,” and 2017 may have been “The Year of Ransomware,” 2018 was, in many respects, “The Year of the Next-Gen Cyberattack.” Modern cyberattacks appear to increasingly be fueled by geopolitical tension and reveal how clever attackers have become in evolving to remain undetected — using techniques such as lateral movement, island hopping and counter incident response to stay invisible.
According to Carbon Black’s threat research, they believe 2019 promises to be a year where endpoint visibility becomes more paramount than ever as attackers continue to evolve and global tensions increase. To better understand the current attack landscape as we head into 2019, the Carbon Black Threat Analysis Unit (TAU) researched the current state of cyberattacks across the Carbon Black customer base and in conjunction with our incident response (IR) partners to produce all of the content enclosed in this report.
Click here to download the full report 

Key Report Stats

The average endpoint protected by Carbon Black was targeted by two cyberattacks per month throughout 2018. At this rate, an organization with 10,000 endpoints is estimated to see more than 660 attempted cyberattacks per day. Across the Carbon Black customer footprint (totaling approximately 15,000,000 global endpoints) this means there are, on average, 1 million attempted cyberattacks per day.

The top five industries targeted by cyberattacks in 2018, according to Carbon Black’s global threat data were: Computers/Electronics, Healthcare, Business Services, Software/Internet and Manufacturing

As 2018 came to a close, China and Russia were responsible for nearly half of all cyberattacks. Of 113 investigations our IR partners conducted in the third quarter, 47 stemmed from those two countries alone.

Approximately $1.8 billion of cryptocurrency-related thefts occurred in 2018. To determine this number, Carbon Black evaluated open-source reporting and dark web marketplaces to identify and quantify the largest threats posed from cryptocurrency-related crimes. During this process, they found almost $1.8 billion in losses throughout 2018.
Click here to download the full report 
To quantify this figure and put in perspective how far cybercrime has evolved in two years, Carbon Black looked at the data from the United States FBI’s Internet Crime Complaint Center (IC3), which reported $1.3 billion in victim losses from total internet crime for all of 2016.

The top ransomware variants seen in 2018 were: Kryptik, GenKryptik, WannaCryptor, WannaCrypt, WannaCry, CryptInject and Locky

The top commodity malware families seen in 2018 were: Emotet, GT32SupportGeeks, Swrort, Injector Trojan and Donoff dropper.

The report also includes specific threat intelligence information from CB TAU on some ubiquitous attack methods including: the Emotet banking trojan, Monero cryptomining attacks and ransomware that leverages open-source tools.
Click here to download the full report 

Need More Information?