The 2024 cyberwar playbook: Tricks used by nation-state actors

The 2024 cyberwar playbook: Tricks used by nation-state actors The 2024 cyberwar playbook: Tricks used by nation-state actors

In 2024, nation-state cyber activity was off the charts, with Chinese, Russian, and Iranian actors leading the charge. Their campaigns weren’t just relentless — they were innovative, using a crafty mix of Tactics, Techniques, and Procedures (TTPs) to gain footholds, stay hidden, and spy-like pros.

“There was definitely a continued and noted uptick in nation-state activity in 2024,” said Chris Hughes, a cyber innovation fellow at the US government’s Cybersecurity Infrastructure and Security Agency (CISA). “Some of the largest activities in 2024 included from Chinese APTs, such as Volt Typhoon and Salt Typhoon.”

No single TTP was the main player on its own. Instead, they worked together (often mutually inclusive) like puzzle pieces, each playing a role in the bigger picture. One actor, for example, might deploy spear-phishing to gain entry, exploit zero days for privilege escalation, and use wiper malware to cover their tracks — all in the same campaign.

Add a comment

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Keep Up to Date with the Most Important News

By pressing the Subscribe button, you confirm that you have read and are agreeing to our Privacy Policy and Terms of Use