ESET Resource Center

ESET Threat Report H2 2023

December 2023

ESET Threat Report H2 2023

This report summarizes threat landscape trends seen in ESET telemetry and from the perspective of ESET threat detection and research experts, from June 2023 through November 2023.

The second half of 2023 witnessed significant cybersecurity incidents. Cl0p, a notorious cybercriminal group known for carrying out ransomware attacks on a major scale, garnered attention through its extensive “MOVEit hack”, which surprisingly did not involve ransomware deployment. The attack targeted numerous organizations, including global corporations and US governmental agencies.

In the IoT landscape, ESET researchers have made a notable discovery. They have identified a kill switch that had been used to successfully render the Mozi IoT botnet nonfunctional. It is worth mentioning that the Mozi botnet is one of the largest of its kind we have monitored over the past three years. The nature of Mozi’s sudden downfall raises the question of whether the kill switch was used by the botnet creators or Chinese law enforcement.

Amidst the prevalent discussion regarding AI-enabled attacks, we have identified specific campaigns targeting users of tools like ChatGPT. We also noticed a considerable number of attempts to access malicious domains with names resembling “chapgpt”, seemingly in reference to the ChatGPT chatbot. Threats encountered via these domains also include web apps that insecurely handle OpenAI API keys, emphasizing the importance of protecting the privacy of your OpenAI API keys.

We have also observed a significant increase in Android spyware cases, mainly attributed to the presence of the SpinOk spyware. This malicious software is distributed as a software development kit and is found within various legitimate Android applications. On a different front, one of the most recorded threats in H2 2023 is three-year-old malicious JavaScript code detected as JS/Agent, which continues to be loaded by compromised websites.

More insights can be found in the report. Feel free to download it and learn more!

Don't miss out

PREMIUM CONTENT

REPORTS


ESET a 'Leader' in IDC MarketScape 2024

ESET has been recognized as a 'Leader' and twice as a Major Player in three Modern Endpoint Security IDC MarketScape reports. Learn more!

PREMIUM CONTENT

REPORTS


Radicati APT Protection Market Quadrant 2024

ESET has been named a 'Top Player' by Radicati in the Advanced Persistent Threat Market Quadrant 2024. See the evaluation!

PREMIUM CONTENT

WHITE PAPERS


NIS2 Compliance: Board-Level Awareness and Action Strategies

Learn how to leverage NIS2 as a business enabler with ESET's insights on how to talk to the board from CISO perspective about the importance and full adoption of the directive.

Ready for next step?

Enter the world of enterprise protection