CyberWire Daily

From small-time scams to billion-dollar threats. [Research Saturday]

Feb 22, 2025

Selena Larson, a threat researcher and lead for intelligence analysis at Proofpoint, dives into the evolving landscape of cybercrime. She highlights how ransomware groups now rival state-sponsored threats in sophistication and impact. Larson argues for a shift away from an APT-centric view towards one that equally addresses cybercrime risks. The discussion also emphasizes the urgent need for enhanced cybersecurity protections for individuals and the critical implications of cyberattacks on services like healthcare.

27:06

Creator website

Episode guests

Selena Larson

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

The rise of ransomware has created an urgent need for the cybersecurity industry to prioritize cybercrime alongside traditional Advanced Persistent Threats.

Shifting the focus from attacker identities to cybercriminal tactics can enhance overall security and protect organizations from diverse threats.

Deep dives

Underestimating Cybercrime Impacts

Ransomware attacks have significant real-life consequences for individuals and organizations, affecting essential services like healthcare, education, and community safety. Historically, the focus on advanced persistent threats (APTs) has overshadowed the immediate dangers posed by cybercriminals, especially ransomware actors. The speaker emphasizes that the disruption caused by these criminals often goes unrecognized and underfunded in terms of defense resources. This imbalance leads to a false sense of security about cyber threats, overlooking the widespread impact of cybercrime on everyday life.

Intro

2min

The Evolution of Cyber Threats: From APTs to Ransomware

8min

Rethinking Cyber Threats: APTs vs. Cybercriminals

5min

Balancing Cyber Threats and Human Impact

5min

Reframing Cybersecurity Narratives: Emphasizing TTPs Over Threat Actors

4min

This week, we are joined by Selena Larson from Proofpoint, and co-host of the "Only Malware in the Building" podcast, as she discusses the research on "Why Biasing Advanced Persistent Threats over Cybercrime is a Security Risk." The cybersecurity industry has historically prioritized Advanced Persistent Threats (APTs) from nation-state actors over cybercrime, but this distinction is outdated as cybercriminals now employ equally sophisticated tactics.

Financially motivated threat actors, especially ransomware groups, have evolved to the point where they rival state-backed hackers in technical capability and impact, disrupting businesses, infrastructure, and individuals on a massive scale. To enhance security, defenders must shift focus from an APT-centric mindset to a broader approach that equally prioritizes combating cybercrime, which poses an immediate and tangible risk to global stability.

The research can be found here:

Why Biasing Advanced Persistent Threats over Cybercrime is a Security Risk

Learn more about your ad choices. Visit megaphone.fm/adchoices

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

CyberWire Daily

From small-time scams to billion-dollar threats. [Research Saturday]

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Underestimating Cybercrime Impacts

The Evolution and Bias towards APTs

Shifting Mindsets for Effective Cyber Defense

The research can be found here:

Remember Everything You Learn from Podcasts