Source: Blog – ReliaQuest Author: Ivan Khamenka URL: https://www.reliaquest.com/blog/top-cyber-attacker-techniques-august-october-2024/

ONE SENTENCE SUMMARY:

Phishing and ransomware threats are escalating, with evolving tactics underscoring the necessity for rigorous cybersecurity measures and employee training.

MAIN POINTS:

1. Phishing incidents made up 46% of customer incidents during the reporting period.
2. “SocGholish” and “LummaC2” are the most frequently observed malware types in incidents.
3. Cloud service alerts increased by 20%, linked to heightened account usage.
4. Ransomware attacks are rising, with “RansomHub” gaining rapid traction as LockBit slows.
5. Initial Access Broker activity grew by 16%, targeting financially capable U.S. organizations.
6. Malicious file alerts intensified, highlighting user vulnerability to phishing exploits.
7. Insider threats have increased by 7%, reflecting the growing complexity of security challenges.
8. GreyMatter DRP alerts show a rise in impersonating domain risks, indicating ongoing credential theft attempts.
9. Strong cybersecurity practices, including robust training, are essential in countering evolving threats.
10. Automated response tools can enhance threat detection and containment effectiveness.

TAKEAWAYS:

1. Rigorous employee training and security measures are crucial against prevalent phishing attacks.
2. Organizations should prioritize cloud security to mitigate increasing risks associated with account breaches.
3. Enhancements in digital risk protection can proactively mitigate impersonation and insider threats.
4. Continuous monitoring of emerging threats helps in adapting cybersecurity strategies effectively.
5. Implement robust backup policies and multi-layered defenses to minimize ransomware risks.