Summary
The 2023 First Half Threat Review Report by Forescout Vedere Labs presents an analysis of vulnerabilities, threat actors, and malware from January 1 to July 31, 2023. The report documents a total of 16,556 new vulnerabilities, averaging 78 new CVEs daily, which marks a 15% increase compared to the same period last year. It highlights that 113 CVEs were added to CISA’s Known Exploited Vulnerabilities catalog, with a significant portion not published in 2023. The report categorizes threat actors, noting that 51% are cybercriminals, primarily ransomware groups, while 39% are state-sponsored actors. The U.S., U.K., and Germany are identified as the top targeted countries, with government and financial services being the most targeted industries. Additionally, the report discusses the evolving tactics of threat actors, including the use of IoT botnets and the repurposing of legitimate tools for malicious purposes. The findings emphasize the dynamic nature of the threat landscape and the increasing complexity of cyber threats.
