2022 Global Threat Report: A Year of Adaptability and Perseverance

CrowdStrike

By George Kurtz, CEO, CrowdStrike


For security teams on the front lines and those of us in the business of stopping cyberattacks and breaches, 2021 provided no rest for the weary. In the face of massive disruption brought about by the COVID-driven social, economic and technological shifts of 2020, adversaries refined their tradecraft to become even more sophisticated and brazen. The result was a series of high-profile attacks that rocked many organizations and, on their own, represented watershed moments in cybersecurity.

As organizations scrambled at the start of 2021 to protect supply chains and interconnected systems in the face of the incredibly sophisticated Sunburst attack, adversaries exploited zero-day vulnerabilities and architectural limitations in legacy systems like Microsoft to leave many reeling. At the same time, eCrime syndicates refined and amplified big game hunting (BGH) ransomware attacks that ripped across industries, sowing devastation and sounding the alarm on the frailty of our critical infrastructure.

For security teams already dealing with an ongoing skills shortage, these issues proved challenging enough on their own. But the strain on security teams was amplified even more at the end of the year when the ubiquitous Log4Shell vulnerability threatened a complete security meltdown.

Understanding these events gives visibility into the shifting dynamics of adversary tactics, which is critical for staying ahead of today's threats. This is the context that the CrowdStrike 2022 Global Threat Report delivers. Developed based on the firsthand observations of our elite CrowdStrike Intelligence and Falcon OverWatchâ„¢ teams, combined with insights drawn from the vast telemetry of the CrowdStrike Security Cloud, this year's report provides crucial insights into what security teams need to know about an increasingly ominous threat landscape.

Among the details you'll learn in this year's report:

  • How state-sponsored adversaries targeted IT and cloud service providers to exploit trusted relationships and supply chain partners
  • How state-sponsored adversaries weaponized vulnerabilities to evade detection and gain access to critical applications and infrastructure
  • How sophisticated adversaries exploited stolen credentials and identities to amplify ransomware BGH attacks and infiltrate cloud environments
  • How malicious actors intensified attacks on critical cloud infrastructure with new, sophisticated approaches

The year 2021 has taught us that no matter how much adversity we face, the adversary will not rest. Attacks are growing more destructive, causing mass disruption in all aspects of our daily lives. But this is the challenge we've accepted and a fight that we will win together. I hope you find this report informative and that it gives you the same clarity of purpose it gives me: to be unrelenting in our drive to stop adversaries from stopping business, and our way of life.

Sustaining Partners