Key Findings This year’s edition of the LUMINAR Annual Threat Intelligence Report provides insights about the global threat landscape while analyzing major trends and threat vectors worldwide, including ransomware attacks, exploitation of high-profile vulnerabilities and the exploitation of stolen access credentials. The following key findings from our report are indicative of the present threat landscape, and can provide insight into what to expect in the upcoming year: GenAI emerged as a key capability for threat intelligence, and is expected to continue to develop throughout 2024 and beyond. More than 40% of attacks documented targeted technology or governmental entities. These organizations are attractive targets due to their valuable data, including sensitive information and intellectual property. 50% of attacks documented were financially-motivated, with ransomware attacks by attack groups considered a top threat vector. The MOVEit flaw (CVE-2023-34362) was the most abused vulnerability by attack groups in 2023. Ransomware continues to be a top concern for organizations. Multiple new ransomware variants emerged in 2023, including two, Rhysida and Akira, which were among the top 10 active ransomware groups in 2023. Well-known info-stealers (Redline, Racoon, Vidar) dominate the stolen access credentials threat vector (responsible for ~85% of infections), with new info-stealers emerging, including Lumma, RisePro, and StealC. 1,128 6M 26 100+ cyber feeds analyzed sales ads of stolen access credentials published on black marketplaces key industries ransomware Dark Web extortion sites monitored Year of GenAI 2 Threat Snapshot 3 Vulnerability Intelligence 4 Ransomware 5 Stolen Access Credentials 6 Tips 7 Key Findings 1