CrowdStrike, a US-based cybersecurity company, has just released its annual Global Threat Report 2013. For those who follow the area, the report reflects some interesting (and disturbing) trends in malicious activity. Most notable:
- The increased use of Strategic Web Compromise or “watering hole” attack — where traffic to a strategically attractive web site is re-directed for malicious purposes. The Council on Foreign Relations was a victim this past year.
- Significant improvements in capability and ramp up in activity from actors in the Middle East, especially those connected with the Syrian government.
- The first (to my knowledge) instance of a strategic infiltration for economic purposes by a Russian group (as opposed to the very common Chinese infiltration) involving the energy sector.
Readers who want a primer on the current state of play should read the entire report.