Deloitte Cybersecurity Threat Trends Report 2023

Where does this data and analysis come from? It comes from collection associated with our world-leading incident response teams, Managed Security Services (MSS) and Managed Extended Detection and Response (MXDR) security operations, and intelligence teams, as well as our proprietary malware database containing more than 200 malware families and our collection crawlers covering more than 1.3 billion sites across the open, dark, and deep web.

Deloitte Cyber Threat Intelligence (CTI) analysts analyzed trends impacting the cyberthreat landscape. Analysis of trends is useful for threat forecasting, improving processes to ensure we are equipped to provide indications and warnings of evolving tactics, conducting program reviews to ensure timeliness and accuracy, cataloging activity to track changes to analytic lines, and efficiently reviewing defensive posture measures (e.g., endpoint detection, alerting rules, operator analysis, security tools, and business processes).

This report outlines the following:

• Emerging and highly active threat actors
  
• Advanced persistent threat actor scorecards
• Cybercriminal threat actor scorecards
• Hacktivist threat actor scorecard
• Malware trends
• Active malware heatmap

This report also includes the following recommendations:

• Ransomware prevention
• DDoS prevention
• Access control (insider threat mitigation)
• Hacktivism
• Email server security