Threatonomics Newsletter: March
??What’s New This Month:?
?? New Insights from Resilience Claims?
Vendor risks are increasing due to a more interconnected digital ecosystem and cybercriminals exploiting third-party vulnerabilities.
The big picture:?
A closer look:
Continue to our latest report for further insights.
???Understanding the OODA Loop
The big picture: The OODA loop—Observe, Orient, Decide, Act—was originally designed for military strategy. Resilience applies it to help businesses stay ahead of evolving cyber threats.
Why it matters: Speed and adaptability are critical in cybersecurity. Passive assessments won’t cut it in the real world, where threats are constantly evolving. The OODA loop helps you stay ahead by taking decisive action before damage occurs.
A closer look: Analysts at Resilience's Risk Operations Center (ROC) applied this approach when uncovering new attack tactics from the cybercriminal group Scattered Spider—allowing us to alert clients and disrupt the threat before it escalated.
Want to learn more? Read the blog from risk scientist, Rob Brown.
?? Defending Against the Dark Web
The big picture: Threat actors are evolving their tactics on the dark web, using AI-powered tools and malware like infostealers to scale attacks and increase efficiency.
Why it matters: Once cybercriminals obtain your credentials, they resell and weaponize them in ransomware attacks and fraud. Proactive monitoring and robust security measures are critical to staying ahead.
A closer look: Infostealers, a type of malware that covertly extracts sensitive data, have surged in popularity. Some, like LummaC2, operate on a subscription model, costing cybercriminals between $250 and $1,000 per month. Their efficiency in harvesting login credentials and financial information makes them a growing threat to businesses of all sizes.
Resilience Threat Analyst, Khaled H, dives deeper in his blog.
Building Cyber Resilience Under DORA
The big picture: The Digital Operational Resilience Act (DORA) is now in effect, requiring financial institutions to strengthen their cybersecurity posture and prepare for cyber threats that could disrupt the financial ecosystem.
Why it matters: With nearly 20% of global cyber incidents since 2020 targeting the financial sector, firms must go beyond compliance and proactively strengthen their resilience. Managing third-party risk, implementing continuous resilience testing, and quantifying financial risk are now critical to protecting operations.
A closer look: Ransomware-as-a-Service (RaaS) has made sophisticated cyber extortion more accessible, leading to widespread attacks. Financial firms must adopt real-time threat intelligence, proactive monitoring, and strong vendor oversight to mitigate these evolving threats.
Read our blog for more practical recommendations.
Check out: Upcoming Webinars
?? Battling Email Threats and Evilginx
Join us on March 11 for a webinar on email security. Learn how Evilginx operates and why it’s a game-changer for phishing attacks. Uncover the necessary strategies to shield your organization from advanced phishing techniques. Save your spot today. https://unlock.cyberresilience.com/evilginx-webinar ?
As cyber threats continue to evolve, staying ahead of emerging risks is critical. Join our experts on March 25 for a webinar to analyze key takeaways from our latest Cyber Risk Report.?
We’ll explore how major cyber trends—such as third-party risk and business consolidation—shaped 2024, examine the most significant cyber incidents of the year, and discuss what organizations should anticipate in 2025.?
Don’t miss this opportunity to gain valuable insights and actionable strategies to strengthen your cyber resilience. Register now.
Thank you for reading. Before you go...
Subscribe so you don’t miss our next issue. For more trends and insights from Cyber Resilience experts, follow our LinkedIn page for weekly blog posts, risk intelligence insights, and more!