Ensign Cyber Threat Landscape Report 2024

Keypoints

• Major cybersecurity reports from top vendors are structured into sections such as Executive Summary, Territorial Insights, Threat Trends, Impact Analysis, and Future Outlook, each discussing threat evolutions, regional specificities, attack techniques, and regulatory changes.
• Consistent data show ransomware remains the dominant threat, with notable groups like ALPHV, LockBit, and FIN11 leading in multi-extortion tactics across various regions.
• State-sponsored threat actors, including APT28, Lazarus Group, and APT41, focus heavily on espionage, information theft, and targeting critical infrastructure, especially in geopolitical hotspots like Singapore, Malaysia, and South Korea.
• Emerging attack techniques involve exploiting low-risk vulnerabilities via “living off the land” tactics, supply chain compromises, and leveraging AI to enhance malware development and influence operations such as misinformation campaigns.
• Regions such as Singapore and Australia face frequent cyber-attacks aimed at financial services, manufacturing, and government industries, with detection dwell times decreasing—indicating improving threat visibility but ongoing targeted efforts.
• New regulations and mandatory incident reporting are increasing transparency and incident disclosure, notably affecting how organizations understand and react to cyber threats in different jurisdictions.
• The outlook for 2024 emphasizes AI-powered disinformation campaigns, the challenge of securing probabilistic AI systems, and managing supply chain risks amid technological bifurcation, which could impact internet stability and global cybersecurity cooperation.