Euromedia24 on Play Store Euromedia24 on App Sore
BNB

$630.65

BTC

$78871

ADA

$0.57689

ETH

$3177.05

SOL

$205.67

1 °

Yerevan

4 °

Moscow

31 °

Dubai

7 °

London

20 °

Beijing

9 °

Brussels

20 °

Rome

8 °

Madrid

BNB

$630.65

BTC

$78871

ADA

$0.57689

ETH

$3177.05

SOL

$205.67

1 °

Yerevan

4 °

Moscow

31 °

Dubai

7 °

London

20 °

Beijing

9 °

Brussels

20 °

Rome

8 °

Madrid

What cyber threats are relevant for the CIS countries?


"Kaspersky" presented the report "Landscape of threats for Russia and the CIS" in 2024 and the first quarter of 2023. In the document, the Kaspersky Cyber ​​Threat Intelligence team described current threats, compiled a list of attack tactics, techniques and procedures, as well as cyber risk mitigation measures.
The main conclusions of the report. Over the past year and a half, the threat of hacktivism has continued to gain momentum. Attackers target organizations with weak defenses without being tied to a specific branch, using any tool available on the open network. At the same time, groups that attack for espionage and financial gain, such as code hackers, are not slowing down.
Bad actors prefer not to change their scripts and attack the least prepared organizations from a cybersecurity perspective, for example by exploiting already known and widespread vulnerabilities in products that many organizations use.
Vulnerabilities in corporate network attacks. More than half of the most actively exploited CVEs were reported in the late last decade. The most common in 2023 and the first quarter of 2024 was CVE-2021-44228 (Log4Shell), a critical vulnerability in the Apache Log4j repository that allows remote code execution. In second place is Microsoft Windows and Microsoft Windows Server vulnerability CVE-2019-0708 (BlueKeep). In addition to remote code execution, it also allows you to view confidential information, elevate privileges, and tamper with the user interface. Also among the top three exploits is the OpenSMTPD mail server vulnerability CVE-2020-7247, which allows remote code execution and elevation of privileges. Vulnerabilities in endpoint attacks. For attacks on corporate devices in Russia and the CIS, criminals most often use vulnerabilities in 7-Zip and WinRAR archivers, as well as in the Google Chrome browser. Attackers exploited 7-Zip vulnerabilities (CVE-2023-31102/CVE-2023-40481 and CVE-2022-29072) in attacks against organizations in Russia and the CIS in the first quarter of 2024 and in 2023. Vulnerabilities in WinRAR (CVE-2023-38831) and Google Chrome (CVE-2023-1822/CVE-2023-1812/ CVE-2023-1813 etc.) are also among the most common. Most of the most actively used loopholes (9 out of 10) allow the execution of malicious code. Moreover, almost all of them were registered in 2023. The threat of encryption programs. Malicious actors exploit the vulnerabilities for attacks using encryption programs. In 2024, they continue to be one of the top threats to organizations around the world. the number of such attacks is at a consistently high level, the total size of the ransom is increasing, and companies are facing the complexity of decryption. The top three types of encryption software in the first quarter of 2024 are Dcryptor, Lockbit and Conti trojans. In the same period last year, the trio was as follows. Phobos, Lockbit and Conti: "In preparing the report, our goal was to present a comprehensive study of the current cyber threat landscape, as well as to demonstrate once again that properly structured information security processes and analysis of attacker tactics, techniques and procedures remain a reliable means of countering cyber threats. In particular, to prevent vulnerabilities from being used in attacks on organizations, it is important to build a remediation process or Patch Management. It is also necessary to use complex defense solutions that allow to quickly identify threats and eliminate them. In addition to technical measures, it is worth paying attention to increasing the digital literacy of employees, because in most cases attacks become possible due to the human factor," comments Nikita Nazarov, head of the extended threat research department at Kaspersky.

News

Important
The Russian air defense system shot down the UAVs flying to Moscow
The policy adopted by the government aims to develop the scientific potential. Zhanna Andreasyan
The Taliban delegation will participate in the COP29 conference in Azerbaijan for the first time
In his conversation with Sholtz, Aliyev noted that Armenia and Azerbaijan are close to the final agreement on the text of the peace treaty
Tragic car accident in Getk village. there are victims and victims
What is the weather like in the coming days?
Pictures of Alen Simonyan, his "friend" Andranik Kocharyan and others with the caption "Nikol's servant" appeared in different parts of Yerevan.
Motorways are passable on the territory of RA
A relative of Karen Sarukhanyan and a member of the KP Council of Elders were arrested. Photos
Trump's opinion on the war in Ukraine has been revealed in the US
Karen Sarukhanyan's aunt's son and assistant were arrested
The US again allowed to withdraw from the Paris climate agreement
Tom Hanks left the US due to Trump's victory
Hill: Trump plans to sever ties between Russia, China, North Korea and Iran
Putin signed a document ratifying the partnership agreement with the DPRK
"We will not forget, we will not forgive." Russian pilots paid tribute to their friends in Armenia
Statement by the Prime Minister of the Republic of Armenia, the President of the Republic of Azerbaijan and the President of the Russian Federation
Bloomberg: Ukraine is developing plans for a meeting between Zelensky and Trump
Trump and Biden will meet in Washington on November 13
Axios: Donald Trump told the Palestinian president he wants to end the war in the Gaza Strip.

More News

...

The policy adopted by the government aims to develop the scientific potential. Zhanna Andreasyan

The police forbade the actors of "Goi" to set up tents for the sit-in. Arzumanyan

Employees of "Goi" theater started a sit-in

We are concerned about the indicators of participation in voluntary certification and the overcoming threshold. Swajyan

A natural monument formed 300,000 years ago was just destroyed by an excavator in Hrazdan Gorge. Hayk Demoyan

An international conference dedicated to the 100th anniversary of Sergey Parajanov's birth was held in Madrid

How much money was allocated to the events dedicated to Charles Aznavour's 100th birthday?

Inviting Goi actors inside was fictitious (video)

We are not allowed to enter the "GOY" theater. the lawyer called the police

The Ministry of Justice could not issue a letter regarding the resumption of "Go". lawyer (video)

The actors of "Goi" called the police. they are not allowed to enter the theater. lawyer (video)

LIVE: "GOY" theater resumes its normal work

An Urartian basalt statue weighing about one ton was found in Van

India intends to bring soil samples from the surface of the Moon. 250 million dollars will be spent

Windows 10 operating system will become paid

We adapt to all conditions, but we have the right to work in a normal PLACE. Lecturer of YEP

China's young astronauts have successfully reached orbit

Event dedicated to the 65th anniversary of the installation of the "David of Sassoon" statue

The property and tools of the conservatory depend on the cellophanes. state repair is delayed (video)

Scandal during Loboda's concert in Yerevan (video)