Source: Blog – ReliaQuest Author: Ivan Khamenka URL: https://www.reliaquest.com/blog/top-cyber-attacker-techniques-august-october-2024/
-
ONE SENTENCE SUMMARY: Phishing and ransomware threats are escalating, with evolving tactics underscoring the necessity for rigorous cybersecurity measures and employee training.
-
MAIN POINTS:
-
Phishing incidents made up 46% of customer incidents during the reporting period.
-
“SocGholish” and “LummaC2” are the most frequently observed malware types in incidents.
-
Cloud service alerts increased by 20%, linked to heightened account usage.
-
Ransomware attacks are rising, with “RansomHub” gaining rapid traction as LockBit slows.
-
Initial Access Broker activity grew by 16%, targeting financially capable U.S. organizations.
-
Malicious file alerts intensified, highlighting user vulnerability to phishing exploits.
-
Insider threats have increased by 7%, reflecting the growing complexity of security challenges.
-
GreyMatter DRP alerts show a rise in impersonating domain risks, indicating ongoing credential theft attempts.
-
Strong cybersecurity practices, including robust training, are essential in countering evolving threats.
-
Automated response tools can enhance threat detection and containment effectiveness.
-
TAKEAWAYS:
-
Rigorous employee training and security measures are crucial against prevalent phishing attacks.
-
Organizations should prioritize cloud security to mitigate increasing risks associated with account breaches.
-
Enhancements in digital risk protection can proactively mitigate impersonation and insider threats.
-
Continuous monitoring of emerging threats helps in adapting cybersecurity strategies effectively.
-
Implement robust backup policies and multi-layered defenses to minimize ransomware risks.