Trellix has released the Advanced Threat Research Report: January 2022, with findings regarding ransomware between July to September 2021. Researched showed that the top three industries which were the most targeted with ransomware attacks were banking, utilities and retail. Other sectors which were significant targets for attacks included education, government and industrial services. Banking and finance showed to be the most prevalent, accounting for 22% of detected attacks. In response to these findings, an expert with Gurucul has offered perspectives.
<p>It is not a surprise that these are the most targeted industries as they either have the most important information to steal or disruption can be catastrophic to their business or their stakeholders. As the pointed out, attackers are modifying their techniques on a consistent basis and this includes variants on successful attacks that can evade most current XDR and traditional SIEM platforms. While rule-based analytics have been incorporated into these platforms, often falsely stated as \"machine learning\" or \"artificial intelligence\", most of them are only useful for determining known attacks and often trigger too many events. This causes security teams to chase down too many minor threats or false positives while the more dangerous emerging attacks slip through the cracks for too long. Financial, critical infrastructure and retailers must research and invest in more cutting security solutions even as attackers have been successful at refining their capabilities to specifically target these groups.</p>