Investment Rating - The report does not explicitly provide an investment rating for the industry Core Insights - The report highlights the active APT organizations such as Lazarus, APT28, Andariel, Donot, OceanLotus, and Sticky Werewolf, with Lazarus being the most frequently recorded [7] - A total of 196,120 organizations/individuals' websites were found to have dark chain implants, with new detections of 21,407 previously undetected dark chains [13] - The report indicates that the majority of ransomware attacks targeted government, information technology, services, electronics, and financial sectors [10] - Vulnerability data shows that the most common types of vulnerabilities include Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), and unauthorized access [16][21] - The black and gray industry data indicates that service provision accounts for 82% of new black market websites, while pornographic content accounts for 9% [22] Summary by Sections APT Threat Intelligence - The report provides a comprehensive overview of APT threat intelligence, analyzing advanced threat attacks and cybercriminal activities throughout 2024 [6] - Active APT organizations and their targeted sectors are discussed, emphasizing the need for vigilance and enhanced cybersecurity measures [6][20] Ransomware Threat Intelligence - Ransomware attacks are reported to have affected various industries, with a focus on government and technology sectors [10] - The report includes insights into active ransomware groups and their operational dynamics [12] Dark Chain Intelligence - The analysis reveals significant dark chain implant activity across various organizations, highlighting the vulnerability of both enterprises and individuals [13] Vulnerability Intelligence - A detailed analysis of vulnerabilities from 2024 is presented, identifying key trends and potential risk points [15] - The report emphasizes the importance of addressing common vulnerabilities to enhance cybersecurity [21] Black and Gray Industry Intelligence - The report monitors various forms of cybercrime, with a focus on phishing, fraud, and gambling activities [18] - The distribution of black market activities is analyzed, revealing the prevalence of service-related crimes [22]
2025年1月网络安全月报
An Heng Xin Xi·2025-02-19 11:15