Thu Sep 12 10:51:00 UTC 2024: ## Cato CTRL Reports Surge in Cyber Threats, Highlights IntelBroker and Log4j Exploits

**San Francisco, CA – August 20, 2024** – Cato CTRL, the Cyber Threats Research Lab, has released its Q2 2024 SASE Threat Report, revealing a concerning rise in cyber threats targeting businesses globally. The report, based on analysis of 1.38 trillion network flows from over 2,500 Cato customers, highlights critical trends and vulnerabilities exploited by threat actors.

**IntelBroker: A Major Player in the Hacking Underworld**

Cato CTRL uncovered the activities of a notorious threat actor known as IntelBroker, a prominent member and moderator within the BreachForums hacking community. IntelBroker has been actively selling stolen data and source code from prominent organizations including AMD, Apple, Facebook, KrypC, Microsoft, Space-Eyes, T-Mobile, and the US Army Aviation and Missile Command.

**Cybersquatting on the Rise, Amazon Targeted Most**

The report also reveals a sharp increase in cybersquatting, where attackers register domain names mimicking legitimate brands to deceive users. Amazon was the most targeted brand, accounting for 66% of spoofed domains. Google followed at a distant second with 7%.

**Log4j and Oracle WebLogic Exploits Continue to Rise**

Despite being discovered in 2021, the Log4j vulnerability remains a favored tool for attackers. Cato CTRL recorded a 61% increase in attempted Log4j exploits in inbound traffic and a 79% rise in WANbound traffic between Q1 and Q2 2024. Similarly, the Oracle WebLogic vulnerability, first identified in 2020, saw a 114% increase in exploitation attempts within WANbound traffic during the same period.

**Cato CTRL Recommends Best Practices**

Based on these alarming findings, Cato CTRL advises organizations to adopt strong security measures, including:

* Implementing robust identity-focused incident response solutions
* Staying updated on the latest security threats and vulnerabilities
* Investing in multi-factor authentication (MFA) and passwordless solutions

The complete report, available on the Cato CTRL website, provides further insights into the evolving threat landscape and offers detailed recommendations for mitigating cyber risks.

Read More