Jamaica suffered 43 million cyber-attack attempts last year

Jamaica received 43 million attempted cyberattacks in 2023, according to data from FortiGuard Labs, Fortinet's threat intelligence and analysis laboratory.

The Latin American and Caribbean region suffered 200 billion attempted attacks in 2023, accounting for 14.5 per cent of the total reported globally last year.

Mexico, Brazil, and Colombia were the Latin American countries with the highest cyber-attack activity in 2023.

Compared to the previous year (360 billion attempted cyberattacks in 2022), this figure is quite lower, but that is not necessarily good news. As FortiGuard Labs has been reporting, this is a global trend as there are fewer massive attacks and a greater volume of unique exploits and new malware and ransomware variants that are much more targeted. In short, fewer attacks are designed for specific targets, making them more sophisticated and more likely to succeed if organizations do not have integrated, automated, and up-to-date cybersecurity defenses.

Other aspects from Fortinet's FortiGuard Labs 2023 report show that ransomware continued to have significant activity in 2023. 

While detections may have decreased in volume, this trend supports what FortiGuard Labs has seen in recent years: ransomware and other attacks are becoming increasingly specific and targeted, thanks to the growing sophistication in attackers' tactics, techniques, and procedures, and their desire to increase ROI per attack, Fortinet said.

“This phenomenon underscores the importance of remaining vigilant and strengthening defenses against potential targeted attacks,” it said.

According to Fortinet, during 2023, there was a notable presence of threats linked to Microsoft Office applications.

Although many of these threats already have their remediation signatures, the persistence in their detection suggests that attackers continue to find utility in their exploits, as many organisations' systems have not been patched or updated, the company noted.

An example is FortiGuard Labs' recent discovery of a phishing campaign distributing a new variant of the Agent Tesla malware. This well-known malware family uses a remote access trojan and data stealer to gain initial access. Cybercriminals often use it to deliver malware as a service (MaaS).

By 2023, malware distribution through Microsoft Office files, such as Excel, Word, and PowerPoint, has accounted for almost 50 per cent of malware detections.

Therefore, it is recommended to implement awareness strategies among employees and use controls such as Antispam, Antimalware, and EDR, among others, to effectively detect and mitigate this malicious activity, Fortinet said.

Prometei, a malware that can remotely control infected machines, has experienced a notable increase in activity in Latin America and the Caribbean during 2023, with Panama and Ecuador as the countries with the highest activity detected.

Not only does Prometei have the ability to spread laterally across networks, steal password credentials, and execute arbitrary commands, but it can also download and execute additional malicious components. Furthermore, it has the capability to perform cryptocurrency mining and update automatically.