Insights

We continue our lookback at the biggest cyber attacks of 2024… so far. Read Part one HERE

As 2024 draws to a close, numerous high-profile cyber incidents have dominated the headlines. With only two and a half months remaining and the Christmas season approaching, it's likely we'll see even more before year’s end. In this blog, the Integrity360 Incident Response team explores some of the most significant cyber attacks of the year... so far.

The legal sector has seen a dramatic 77% increase in successful cyber attacks over the past year, with incidents rising from 538 in 2022/23 to 954 in 2023/24. This rise is largely due to the sensitive and valuable nature of the information that law firms hold, making them prime targets for cybercriminals.

In 2024, the landscape of ransomware attacks will continue to evolve, drawing from past trends while adapting to new defences and technologies. This blog will look into how ransomware is changing in 2024.

In part 2 of our series on the major cyberattacks of 2023 we'll be examining the attacks on Royal Mail and JD Sports. We'll also take a closer look at one of the largest DDoS attacks ever documented and delve into the havoc caused by the Black Basta ransomware spree.

2022 has been a tumultuous year for cyber security, with a number of high-profile breaches and incidents making headlines around the world. From state-sponsored cyber attacks to extortion campaigns, it’s clear that the threat landscape is constantly evolving. In this blog post, we take a look at some of the most reported on incidents of 2022.

One of the biggest challenges cyber security leaders need to grapple with in today's world is that malicious actors aren't always distant entities but are often people you work with on a day-to-day basis. The reality is that any employee or contractor with physical access to IT systems can leak private information and cause a data breach.  

Phishing attacks may be the most common form of cyber-attack but that doesn’t mean that you’re helpless in the face of the threat.With Cyber Awareness Month now is a great time to test your employees. One of the best and effective ways to reduce the risk posed to your organisation is to run cyber security phishing tests to help your employees learn what they should keep an eye out for.

According to the government's Cyber Security Breaches Survey 2023, phishing is the most common form of cybercriminal activity suffered by UK businesses and charities, with 79% having been targeted by phishing scams. 

TrickBot is a banking trojan that was first detected in September 2016 and since that time had been developed to incorporate the targeting of multiple geographies and online services. The malware was developed to gain unauthorized access to customer bank accounts to facilitate fraudulent transactions, but also targeted users of online services such as Salesforce and cryptocurrency services. The malware was reportedly delivered via spam emails containing malicious attachments, including those distributed by the Necurs botnet, and via the RIG exploit kit. In some cases, TrickBot used an exploit called EternalBlue (affects CVE-2017-0144) or Windows API calls to propagate in a local network. The functions and activities of TrickBot are reportedly very similar to the Dyre banking trojan, and it was assessed by researchers to be linked to this trojan, including that at least one of the developers of Dyre was involved in the development of TrickBot.

Last Updated: 17/05/21 12:00

Integrity360 has deployed our Incident Response Team to support a number of clients who may be affected by the ransomware attack widely reported on in Irish media.

Our teams are committed to supporting the wider health community, as well as our clients and advise all organisations of the need to increase vigilance within your own environment in relation to this attack.

According to Wired, ransomware is one of the fastest growing threats in cybersecurity, with global damages predicted to reach £15 billion by 2021.

One-third of all cyber attacks in 2020 can be attributed to three main ransomware groups, Ryuk, Maze and Sodinokibi. Other key trends for 2020 ransomware include threats of data exfiltration and publication.