Kaspersky Reveals APT Trend Projection In 2024

JAKARTA - Kaspersky Global Research and Analysis Team (GReAT) experts provide threatening insights and projections in 2024, where they expect APT players to introduce new exploits on mobile devices, wearable devices, and smart devices.

Some of the threat trends that will appear in 2024 are:

AI-backed identity rejection, emergence of creative exploitation for mobile, and new botnets

The AI tools that appear will simplify the production of spear-phishing messages, even allowing certain individual imitators. Strikers can design creative automation methods by collecting online data and entering them into NGOs to create emails with the style of someone connected to the victim.

The growth of cyber attacks carried out by state-sponsored actors and hacktivism as normal

Kaspersky also predicts that the number of state-sponsored cyberattacks will also have the potential to increase next year, amid rising geopolitical tensions, which will most likely threaten data theft or encryption, IT infrastructure destruction, long-term espionage, and cyber sabotage.

Hacktivism

Geopolitical tensions suggest a possible increase in hacking activity, both destructive and aimed at disseminating false information, leading to unnecessary investigations that could lead to fatigue for SOC analysts and cybersecurity researchers.

Supply chain attacks as a service: mass purchase access by operators

Supply chain attacks targeting small companies to large companies. The motive for the attack could range from financial gain to espionage.

"In 2024 there may be new developments in the dark web market activity associated with the supply chain, enabling more efficient and large-scale attacks," said Igor Kuznetsov, Director, Global Research and Analysis Team (GREAT) at Kaspersky.

The emergence of more groups offers a hack-for-hire service

Hacking groups for rent have increased, providing data theft services to clients ranging from private investigators to business competitors. This trend is expected to grow in the coming year.

Managed File Transfer (MFT) system used for advanced attacks

The Managed File Transfer (MFT) system faces increased cyber threats, such as violations of MOVEit and GoAnywhere in 2023. This trend is expected to increase, where cyber enemies are eyeing financial benefits and operational disruptions.

"Organizations must implement strong cybersecurity measures, including data loss prevention and encryption, as well as raise cybersecurity awareness to fortify the MFT system against increasingly growing threats," he concluded.