May 8, 2017 By Douglas Bonderud 2 min read

Cybercrime events are on the rise. According to Dark Reading, security company ThreatMetrix detected 130 million attacks in the first quarter of 2017, up 23 percent from the same period last year.

While the U.S. — along with the U.K. — topped the list of intended targets, the biggest volume of cyberthreats came from Europe at large, with double the volume of U.S. attacks. Why the disparity, and what does it mean for IT security?

A Collaborative Effort?

Across the U.S., malicious actors are looking for ways to defeat corporate systems and breach databases. Despite a subpar security culture, the shared application of laws, regulations and federal practices make it relatively easy to track emerging threats and target particular malware strains.

As noted by the Dark Reading piece, meanwhile, Europe is a different story. Open borders allow residents of the European Union (EU) to freely travel between member countries, but financial cybercrime, ransomware and other threats are only naturally segregated by language, culture and current corporate practice. Toss in the recent uncertainty surrounding Brexit, and it’s no surprise that the volume of attacks originating in Europe is double that of the U.S.

Among European countries, Italy, France, Germany and the U.K. accounted for half of all recorded attacks, with Germany and the U.K. at the forefront. Not surprisingly, all attacks — regardless of origin — prioritize both the U.S. and U.K. as targets.

Bad Actors Without Borders?

The shift to more foreign cyberattacks shouldn’t come as a surprise. While Brexit and other factors certainly influenced the production of cyberthreats in Europe, increasing technical proficiency across the globe make international borders a weak defense against cyberattacks.

Country-based cybercrime is just the beginning. As noted by The Guardian, security researchers have discovered serious vulnerabilities in the superyachts often owned by billionaires, which are used as combination living and corporate spaces.

For example, security expert Campbell Murray was able to take complete control of one yacht in just a few hours. He could have easily sailed the boat off into the sunset, then disappeared without a trace. Given the amount of money and power held by many of these billionaires, this kind of oceanic attack could have far-reaching global consequences.

Back on land, meanwhile, CSO Online pointed out that well-meaning employees, rather than globetrotting cyberattacks, are responsible for most financial cybercrime experienced by banks. In an effort to accommodate customers and subvert the notion of uncaring institutions, many frontline staff aren’t properly authenticating identification or vetting transactions, resulting in millions lost.

Stemming the Tide of Global Cybercrime

European cyberattacks are on the rise, outstripping the U.S. in production even as it remains a high-priority target. But focusing in on the EU — or any global region — misses the larger point: Attacks now originate from anywhere, and are often spread via unintentional human help rather than sophisticated code.

To help stem the tide of cyberthreats, companies must adopt both global vigilance and improved local oversight to ensure attacks are quickly detected and immediately addressed.

More from

Is AI saving jobs… or taking them?

3 min read - Artificial intelligence (AI) is coming to take your cybersecurity job. Or, AI will save your job.Well, which is it?As with all things security-related, AI-related and employment-related, it's complicated.How AI creates jobsA major reason it's complicated is that AI is helping to increase the demand for cybersecurity professionals in two broad ways. First, malicious actors use AI to get past security defenses and raise the overall risk of data breaches. The bad guys can increasingly use AI-based tools for improved reconnaissance…

CISA warns about credential access in FY23 risk & vulnerability assessment

3 min read - CISA released its Fiscal Year 2023 (FY23) Risk and Vulnerability Assessments (RVA) Analysis, providing a crucial look into the tactics and techniques threat actors employed to compromise critical infrastructure. The report is part of the agency’s ongoing effort to improve national cybersecurity through assessments of vulnerabilities in key sectors. Meanwhile, IBM’s X-Force Threat Intelligence Index 2024 has identified credential access as one of the most significant risks to organizations.Both reports shed light on the persistent and growing threat of credential…

Are we getting better at quantifying risk management?

4 min read - As cyber threats grow more sophisticated and pervasive, the need for effective risk management has never been greater. The challenge lies not only in defining risk mitigation strategy but also in quantifying risk in ways that resonate with business leaders. The ability to translate complex technical risks into understandable and actionable business terms has become a crucial component of securing the necessary resources for cybersecurity programs.What approach do companies use today for cyber risk quantification? And how has cyber risk…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today