In this Cyber threat overview, ANSSI (National Agency for the Security of Information Systems) reflects on the significant trends that have shaped the cyber landscape during 2020-2021 and presents short-term prospects for change.

These trends are indicative of a continuous escalation in the level of threats. Supporting this notion, ANSSI reported being informed about 1,082 proven intrusions into information systems in 2021, compared to 786 in 2020. This represents a 37% increase in confirmed intrusions over the course of the year. The rise can be attributed to the advancing capabilities of malicious actors, who primarily seek financial gain, engage in espionage, and aim to cause destabilization.

These actors have capitalized on numerous opportunities arising from the widespread adoption of digital technologies, often without adequate levels of control. Therefore, special vigilance is necessary in the context of significant events in France, such as the French presidency of the European Union, the presidential and legislative elections in 2022, and the Paris 2024 Olympic Games. These events provide contextual opportunities for attackers to exploit.

This overview includes organizational and technical recommendations related to the observed threats.

In this Cyber threat overview, ANSSI (National Agency for the Security of Information Systems) provides a comprehensive analysis of the major trends that have shaped the cyber landscape during the period of 2020-2021. Additionally, ANSSI offers insights into the short-term prospects for change in the cybersecurity domain.

One of the key observations made in this overview is the continuous increase in the threat level. ANSSI reports a significant rise in the number of proven intrusions into information systems. In 2021 alone, ANSSI recorded a total of 1,082 confirmed intrusions, compared to 786 in 2020. This represents a substantial 37% increase in intrusions over the course of the year. Such a surge can be attributed to the growing and ever-evolving capabilities of malicious actors who are primarily driven by motives such as financial gain, espionage, and destabilization.

The rapid proliferation of digital technologies has presented these malicious actors with abundant opportunities to exploit vulnerabilities. Often, these opportunities arise due to insufficient levels of control and oversight. ANSSI emphasizes the need for heightened vigilance, particularly during significant events taking place in France. The French presidency of the European Union, the upcoming presidential and legislative elections in 2022, and the highly anticipated Paris 2024 Olympic Games all serve as prime contextual opportunities for attackers to exploit.

Given the evolving threat landscape, this overview not only identifies the prevailing risks but also offers organizational and technical recommendations to mitigate these threats. ANSSI highlights the importance of robust cybersecurity measures, including the implementation of strong access controls, regular security assessments, and continuous monitoring of systems. Additionally, ANSSI stresses the significance of fostering a culture of security awareness and providing training programs to educate individuals about potential cyber threats and best practices to protect against them.

Moreover, ANSSI acknowledges the collaborative nature of cybersecurity and emphasizes the need for close cooperation between public and private entities. Information sharing and the establishment of partnerships between various stakeholders are deemed crucial in enhancing the collective resilience against cyber threats.

By providing this comprehensive overview and offering practical recommendations, ANSSI aims to raise awareness about the evolving cyber landscape and empower organizations and individuals to take proactive measures in safeguarding their information systems and digital assets. Through a collective effort, it is possible to effectively combat cyber threats and ensure a secure and resilient digital environment.

Liens vers le site cert.ssi.gouv.fr/