CERT.LV activity review Q3 2024
CERT.LV Activity Report for Q3 2024 (PDF).
The Activity Report for Q3 2024 contains publicly available information and does not include information about CERT.LV activities that contain classified information. The report is for informational purposes only.
Summary
Geopolitical and ideological conflicts continue to be strong drivers of cyber attacks. Since the Russian invasion of Ukraine, the level of cyber threats in Latvia has increased significantly. The support of Latvia to Ukraine and the continuation of Russian aggression means that a high cyber threat dynamic is maintained, which underlines the need for constant vigilance and improved defence solutions.
The historically high level of 405 955 unique IP addresses being compromised indicates a significant increase in cyber threats and activity. In Q3 2024, the number of reports recorded increased by 4.4% compared to the previous quarter and by 21% compared to the same period last year. Latvia demonstrates a high level of cyber resilience.
Since the beginning of 2022, public and private sector organisations have been reporting incidents and vulnerabilities more frequently and requesting support from CERT.LV more often, reflecting an increasing level of trust between public and private sector organisations.
In Q3 2024, the most common types of threats were configuration deficiencies, malicious code, service availability and fraud.
Compared to the same period a year ago, only the number of intrusion attempts decreased in the reporting period, while the following threat types showed the largest increase:
• compromised devices (+267%)
• fraud (+183%)
• service availability (+158%)
• malicious code (+73%)
CERT.LV services to public and private sector organisations are expanding. From 1 September 2024, with the entry into force of the National Cybersecurity Law (NCSL) in Latvia, the cyber incident response body CERT.LV will become part of the National Cybersecurity Centre. The NCSL extends the scope of the law to a wider range of organisations, thus increasing the number of CERT.LV constituents who have to comply with the new requirements but can also receive the services offered by CERT.LV. As the main operational cyber security organisation in Latvia, CERT.LV offers a wide range of services to strengthen cyber resilience: https://cert.lv/lv/pakalpojumi
By fulfilling its mission, CERT.LV continues to promote cybersecurity and be a trusted opinion leader in Latvian cyberspace.