2023 State of the Threat

Over the past year, both cybercriminal and state-sponsored threat actors have maintained high levels of activity, meaning that the threat level to businesses remains as elevated as ever. The range of threats remains broad, from the temporary nuisance of hacktivist denial of service attacks to wiper attacks or IP theft and other types of cyberespionage, from business email compromise to data exfiltration attacks or business-threatening ransomware attacks. Precursor cyber activity continues at scale, delivering the malware that makes many of these cyberattacks, particularly ransomware attacks, easier and faster to carry out. 

Amidst all this, Secureworks® Counter Threat Unit™ (CTU) researchers continue to track these threats and use their knowledge and expertise to develop insights into this activity. These insights feed into published threat intelligence and provide the indicators and technical content that allows us to create countermeasures that provide protection for Secureworks' customers. 

This report synthesizes and presents our findings for the period July 2022 to June 2023