- Home >
- Services >
- Access to Knowledge >
- Trend Monitor >
- Type of Threat or Opportunity >
- Trend snippet: Key Cyber Trends in The North America Region 2023
Trends in Security Information
The HSD Trendmonitor is designed to provide access to relevant content on various subjects in the safety and security domain, to identify relevant developments and to connect knowledge and organisations. The safety and security domain encompasses a vast number of subjects. Four relevant taxonomies (type of threat or opportunity, victim, source of threat and domain of application) have been constructed in order to visualize all of these subjects. The taxonomies and related category descriptions have been carefully composed according to other taxonomies, European and international standards and our own expertise.
In order to identify safety and security related trends, relevant reports and HSD news articles are continuously scanned, analysed and classified by hand according to the four taxonomies. This results in a wide array of observations, which we call ‘Trend Snippets’. Multiple Trend Snippets combined can provide insights into safety and security trends. The size of the circles shows the relative weight of the topic, the filters can be used to further select the most relevant content for you. If you have an addition, question or remark, drop us a line at info@securitydelta.nl.
visible on larger screens only
Please expand your browser window.
Or enjoy this interactive application on your desktop or laptop.
Key Cyber Trends in The North America Region 2023
-
The most noteworthy APT attacks against entities based in North America in 2023 were conducted by Lazarus, Andariel, Kimsuky, and Dark Caracal, as well as UNC4841, Mustang Panda, and BlackTech. At least 12 APT attacks against government and military bodies in the region were detected, which highlights the strategic nature of attacks by state-sponsored hacker groups.
-
Our analysis of Dedicated Leak Sites (DLSs) revealed a 109% increase in ransomware attacks in the North America region in 2023, with manufacturing and real estate companies remaining the main targets. There has also been a shift in focus to the healthcare industry, which is now the third most targeted sector by ransomware.The USA and Canada are still the top two countries in the region experiencing ransomware attacks.
-
In 2023, over 188 new cases of public database leaks were recorded in the North America region, but only 2.6% of them contained passwords. In the other cases, less critical information was compromised.
-
In 2023, the number of offers to sell initial access to compromised networks in the region increased by 18%. The quality of initial access offers also rose, marked by a 73% increase in instances of access sold with local administrator rights, compared to 2022.
-
American companies accounted for almost 90% of all initial access offers detected in the region by Group-IB analysts in 2023. SouthCore became the most active Initial Access Broker in North America, with 62 offers to sell network access to local companies.
-
92% of all compromised cards in the region detected by Group-IB researchers in 2023 were issued by US banks. American payment records are the most often compromised in the world.
-
Over the past year, there has been a 10% decrease in the number of unique infected hosts in North America whose logs have been published on UCLs, reaching nearly 70,000. At the same time, in 2023 there was a 29% increase in the number of hosts whose logs were put up for sale on underground markets related to the North America region.