Imperva Research Labs published the August 2020 Cyber Threat Index Report. The report indicates that Australia, the United Kingdom, and Canada hit by the largest increase in incidents as data leakage attacks are also on the rise. Most countries saw an increase in the number of security incidents in August.
In addition to this, the number of data leakage attempts that target Apache servers, Git repositories, and databases also grew. While gambling sites are facing larger DDoS attacks, the number of high-risk vulnerabilities is growing.
Key findings of Imperva’s August 2020 Cyber Threat Index Report
- Globally, the number of security incidents increased during August. Most countries experienced more security incidents in August than June and July. The largest increases in incidents were in Australia (+19%), the United Kingdom (+15%), and Canada (+13%). The only exception to this global trend was Russia, which saw the volume of incidents reduce by 6%.
- Data leakage attack attempts are on the rise. The number of data leakage incident attempts grew by 30% in August, targeting Apache servers, Git repositories, and databases. The most targeted industry for these attacks was Financial Services, which experienced a 55% growth in data leakage attack attempts since May.
- Overall Cyber Threat Index score rose for the second month in a row. The CTI score went up by six points both in both July and in August, reaching a score of 798, due to the increase in revealed high-risk vulnerabilities and a 5% increase in security incidents. Counterintuitively, the volume of blocked malicious requests dropped, indicating more targeted tactics and fewer randomized “spray-and-pray” attacks.
- The size of application DDoS attacks against gambling sites is increasing. DDoS attacks against gambling sites grew larger in size over the past few months. Imperva Research Labs measured a 281K requests per second (RPS) attack in August and a 250K RPS attack in July—larger attacks in comparison to the months prior.
- The number of high-risk remote code evaluation (RCE) and remote file inclusion (RFI) vulnerabilities is growing. Continuing a trend Imperva Research Labs has observed over the past eight months, the number of published vulnerabilities continues to increase. More than 250 vulnerabilities published in August—half of which were published with an exploit, and 5% of them are considered “high risk.”
- Travel industry traffic volume drops to a third of August 2019 levels. From November 2019 to April 2020, traffic decreased every month as the COVID-19 pandemic spread, becoming a global crisis. Although travel site traffic kicked off an upward trajectory in May 2020, it remains far below its pre-COVID 19 level. In addition, the number of security incidents in travel websites also decreased by 40% when compared to this time last year.
Nadav Avital, head of security research at Imperva, talked about the key findings, saying,
“Countries around the world are dealing with a similar problem in terms of increased security incidents. This is also exemplified by the increase in specific threats such as data leakage attacks, and vulnerabilities like RCE and RFI. Furthermore, even though the volume of blocked malicious requests dropped, organizations must not lose focus, or assume they are safer because volume is down.”