Insights

Today’s cyber threats are escalating at an unprecedented rate:

Rising Attack Frequency: In Q3 2024, organizations faced an average of 1,876 cyberattacks weekly—a 75% increase from the same period in 2023.

Source: blog.checkpoint.com

Daily Threat Volume: Companies encounter nearly 4,000 new cyberattacks daily, with ransomware incidents occurring every 14 seconds.

Source: getastra.com

Advanced Adversaries: Even leading corporations like Amazon have reported facing nearly one billion cyber threats daily, up from 100 million earlier in the year, highlighting the sophistication and scale of modern cybercriminals.

Source: wsj.com

Addressing the Talent Shortage

The cybersecurity industry is grappling with a significant talent gap:

Workforce Deficit: As of 2024, there are approximately 3.5 million unfilled cybersecurity positions worldwide, underscoring the urgent need for skilled professionals.

Source: cybersecurityventures.com

Resource Constraints: Economic challenges have led to 25% of organizations experiencing layoffs in their cybersecurity departments, with 37% facing budget cuts, further exacerbating the skills shortage.

Source: (ISC)²

Information on Most Recent Cyber attacks

MOVEit Data Breach (June 2023)

In June 2023, a critical vulnerability in MOVEit, a managed file transfer software developed by Progress Software, was exploited by cybercriminals. This breach affected thousands of organizations and nearly 100 million individuals globally. Notable companies impacted include the BBC, British Airways, and Boots. The Russian-affiliated cyber gang Cl0p claimed responsibility for the attacks, which involved stealing files through SQL injection vulnerabilities on public-facing servers.

en.wikipedia.org

U.S. Telecommunications Hack (August 2024)

In August 2024, Chinese hackers infiltrated at least nine major U.S. telecommunications firms, including AT&T, Verizon, Lumen Technologies, and T-Mobile. The attackers accessed metadata of users’ calls and text messages, affecting over a million users, including political figures such as Donald Trump and staff from the Kamala Harris 2024 presidential campaign. The breach was attributed to the Salt Typhoon advanced persistent threat group linked to China’s Ministry of State Security.

en.wikipedia.org

U.S. Treasury and Broader Cyber Espionage Campaign (March 2025)

On March 5, 2025, U.S. federal authorities indicted 12 Chinese nationals, including two government officials, for their involvement in a decade-long cyber espionage campaign targeting over 100 U.S. organizations, such as the Treasury Department, state governments, news services, universities, defense contractors, and critical infrastructure. The individuals were associated with the Chinese hacking group APT27 (also known as Silk Typhoon) and the hacker-for-hire contractor i-Soon. The Department of Justice revealed that the Ministry of State Security and the Ministry of Public Security paid substantial sums for the stolen data, with i-Soon reportedly earning millions from these hacking activities.

The Verge