CrowdStrike 2023 Threat Hunting Report

2023 Threat Hunting Report

Nowhere to hide

The problem isn’t malware — it’s adversaries. To stop these adversaries, security teams must understand how they operate. In the 2023 Threat Hunting Report, CrowdStrike’s Counter Adversary Operations team exposes the latest adversary tradecraft and provides knowledge and insights to help stop breaches.

Get the report to learn about the latest findings, including:

  • 583% increase in Kerberoasting, a growing identity-based attack technique
  • 312% increase in abuse of remote monitoring and management (RMM) tools
  • 160% increase in credential theft via cloud instance metadata APIs
  • 79 minutes average eCrime breakout time, a 5-minute drop from 2022
  • 7 minutes fastest eCrime breakout time recorded
  • 62% of interactive intrusions involved compromised identities