In Q2 2022, Kroll observed a 90% increase in attacks against the health care sector in comparison with Q1 2022. Due to challenges such as ransomware and unauthorized access, it’s become the most affected sector during this period. While this may signal the official end of the pandemic-era “truce” that many cybercriminals promised at the onset of COVID-19, numbers show that threat actors continue to leverage other hallmarks of the pandemic, such as remote work access, to gain a foothold into victim networks. Another notable trend was the use of External Remote Services for initial access, with Initial Access Brokers securing access into environments and selling this on to ransomware groups.
Watch our cyber threat intelligence leaders Laurie Iacono and George Glass explore key insights and trends directly from the frontlines of incident response.
This webcast covers:
- The most common threat incident types of the first half of 2022 and how they have evolved
- The incidents currently impacting the health care sector, including ransomware and unauthorized access
- How threat actors are increasingly harnessing external remote services and CVE exploitation for initial access
- The ransomware variants on the rise and the ransomware groups that have increased their activity
You can also read the Q2 2022 Threat Landscape Report.