Cybercrime has emerged as the world's third-largest economy, with costs expected to reach $12.2 trillion annually by 2031, as reported by Cybersecurity Ventures. A recent report from Huntress highlights the strategies employed by organized, profit-driven cybercriminals. It reveals how they manipulate legitimate tools, exploit common behaviors, and utilize a vast underground network to target individuals, businesses, and employees worldwide.
Key Findings from the Report
- Remote monitoring and management (RMM) tools have become the weapon of choice for cybercriminals.
- More than half of all malware loader activities originated from ClickFix.
- Time-to-ransom (TTR) has increased as ransomware groups focus on stealth, data theft, and extortion.
- The ransomware landscape is dominated by four major players: Akira, Medusa, Qilin, and Ransomhub.
- Purchasing stolen credentials is now both cheaper and easier than ever.
- Mailbox manipulation and OAuth abuse are prevalent techniques that facilitate business email compromise (BEC) attacks.
The report emphasizes that generative AI-powered cybercrime has evolved beyond just more sophisticated phishing scams. It has transformed into an underground economy that exploits trust, equipping cybercriminals with advanced tactics and tools. This development has propelled cybercrime to unprecedented levels of speed and sophistication.
