Subscribe

Mandiant tracks 3,500 cyber threat groups in 2022

April 21, 2023

Mandiant disclosed that the number of cyber threat groups it is monitoring has increased to 3,500 in 2022, an increase of 900 from the previous year, with 265 discovered for the first time during the company’s investigations.

These organizations were discovered to be financially driven, government-sponsored, and 335 uncategorized organizations. According to Mandiant’s analysis on the global cybersecurity environment, M-Trends 2023, over half of the groups analyzed by the firm sought financial advantage.

The research also discovered a rise in new malware families, but a decrease in ransomware assaults. In 2022, ransomware was engaged in 18% of Mandiant’s global investigations, down from 23% in 2021. The research links this decline to government and law enforcement interruptions in ransomware assaults, which drove perpetrators to retool or form new alliances.

For the third year in a row, vulnerabilities such as SQL injection and cross-site scripting were the most popular attack vectors, according to the research. Furthermore, there has been an upsurge in credential theft and purchasing, highlighting the need for improved digital hygiene. Mandiant advises businesses to have a solid security strategy in place to battle these emerging cyber threats.

The sources for this piece include an article in TechRepublic.

Top Stories

Anthropic’s Claude Mythos model escapes test sandbox during testing

Toronto neighbourhood debates AI surveillance plan for “virtual gated community”

Kyndryl launches agentic AI framework to help enterprises bridge operations gap

Iran threatens AI data centres amid escalating infrastructure conflict

Oracle begins mass layoffs to fund $156 billion AI infrastructure push

OpenAI brings in Smartly to shape how ads work inside ChatGPT

Related Articles

Anthropic coding tool exposes full source code again after packaging error

April 1, 2026 Anthropic has inadvertently exposed the full source code of its Claude Code tool for the second time more...

Cisco breach exposes 300+ repos after supply chain attack

April 1, 2026 Cisco suffered a cyberattack after attackers used stolen credentials from a compromised developer tool to access its more...

New Google update targets sensitive data exposure in search results

March 30, 2026 Google has expanded its “Results about you” tool, allowing users to remove highly sensitive personal data, including more...

GitHub Copilot to train on user data by default 

March 27, 2026 Microsoft is updating GitHub Copilot to train on real-world developer interactions, expanding beyond public code datasets to more...

Picture of TND Newsdesk

TND Newsdesk

Picture of TND Newsdesk

TND Newsdesk

Jim Love

Jim is an author and podcast host with over 40 years in technology.

Share:
Facebook
Twitter
LinkedIn
Tech News Day is a daily publication featuring key news stories about technology and how it affects businesses.

Follow Us

X-twitter Linkedin-in

Popular categories

Tech News Delivered

New, Relevant Tech Stories. Our selection is done by industry professionals – executives like you who pick the top stories for that day. Our writers summarize them to give you the key takeaways.
Subscribe
© 2025 TECHNEWSDAY. All rights reserved.