Acronis End-of-Year Cyberthreats Report Uncovers 222% Surge in Email Attacks During 2023
Biannual report reveals malware data gathered from July – December; highlights the rise of generative AI systems to create malware and orchestrate attacks
SCHAFFHAUSEN, Switzerland, Feb. 07, 2024 (GLOBE NEWSWIRE) -- Acronis, a global leader in cyber protection, today released the findings of its benchmarked cyberthreats report for the second half of 2023. Titled “Acronis Cyberthreats Report, H2 2023: Alarming rise in cyberattacks, SMBs and MSPs in the crosshairs,” the report provides an in-depth analysis and prescriptive outlook on key security issues and prevalent cyberthreats worldwide. By leveraging data collected from over 1,000,000 unique endpoints across 15 key countries, the findings conclude that AI-enhanced phishing affected over 90% of organizations and contributed to a 222% surge in email attacks in 2023 as compared to the second half of 2022.
Ransomware variants and the number of new groups continue to decrease, yet the most renowned families of the attack vector are still causing companies across the globe to lose data and money. The report sheds light on the lack of strong security solutions which should be detecting the exploitation of zero-day vulnerabilities. To add, organizations are falling victim to attacks due to the delay in patching vulnerable software which allows threat actors to gain domain administrative rights, uninstall security tools and infiltrate sensitive information. Behavior-based detection and exploit prevention technology can prevent most of these attacks. This, paired with proper data backup, following the 3-2-1 rule, is necessary to create a last line of defense.
“There’s a disturbing trend being recognized globally where bad actors continue to leverage ChatGPT and similar generative AI systems to increase cyberattack efficiency, create malicious code, and automate attacks,” said Candid Wüest, Acronis VP of Product Management. “Now, more than ever, corporations need to prioritize comprehensive cyber protection solutions to ensure business continuity.”
As a channel-first organization, Acronis’ focus is to protect its dedicated partners, managed service providers (MSPs) and managed security service providers (MSSPs). These IT resources are allies to businesses who seek robust IT infrastructure and sound cybersecurity but because they centralize services to numerous businesses, from SMBs to large corporations; the scaling efficiencies that make them a business asset also make them a single point of failure where cybercriminals can exploit multiple entities through a single attack.
The report notes how more advanced tactics like supply chain attacks, AI-driven attacks and state-sponsored incursions are likely to intensify. MSPs should brace themselves for threats unique to their operations, including "island hopping," in which attackers use an MSP's infrastructure to attack clients, as well as "credential stuffing," which exploits an MSP's broad access to systems. To address this concern, Acronis offers training and certification programs through the MSP Academy for those interested in enhancing their cybersecurity skills and knowledge.
Key findings and themes from the report include:
Global threat landscape
- Singapore, Spain, and Brazil emerged as the most targeted focus countries for malware attacks in Q4 2023.
- Acronis blocked nearly 28 million URLs at the endpoint in Q4 2023, reflecting a 36% decrease compared to Q4 2022.
- 33.4% of received emails were identified as spam, with 1.5% containing malware or phishing links.
- The average lifespan of a malware sample in the wild is 2.1 days.
- In Q4 2023, 1,353 ransomware cases were explicitly mentioned, with notable contributions from LockBit, Play, ALPHV and the active Toufan group.
Cybersecurity trends – from July – December 2023
- Ransomware remains a major threat to large and medium-sized businesses, impacting critical sectors such as government and health care.
- Data stealers are the second most prevalent threat, contributing to most data breaches.
- The use of generative AI systems, including ChatGPT, for launching cyberattacks and creating malicious content is on the rise.
Ransomware Trends
- Known ransomware gangs in 2023 include LockBit, Cl0P, BlackCat / ALPHV, Play, and 8Base.
- The ALPHV gang, whom the FBI targeted in December 2023, breached over 1,000 entities, demanded over $500 million, and received over $300 million in ransom payments.
- Regardless of a decrease in ransomware variants, businesses continue to suffer data and financial losses.
Attacks on MSPs are increasing
- Attacks on managed service providers (MSPs) continue, with a recent high-profile breach affecting multiple U.S. (United States) government agencies.
- Microsoft cloud email account vulnerabilities led to the compromise of 60,000 emails from 10 U.S. State Department accounts.
Phishing and email Attacks remain the main vectors of infection
- The total number of email-based attacks detected in 2023 increased by 222%.
- Organizations experienced a 54% increase in the number of attacks per organization.
- 91.1% of organizations faced AI-enhanced phishing attacks.
The AI menace — Cybercriminals embrace malicious AI-based tools for corporate attacks
- Cybercriminals are leveraging malicious AI tools, including WormGPT, FraudGPT, DarkBERT, DarkBART and ChaosGPT.
- The public release of ChatGPT has increased the use of generative AI for cyberattacks.
"The Acronis Cyberthreats Report H2 2023 highlights the continued threats faced by businesses of all sizes worldwide,” said Michael Suby, Research VP, IDC. “Unfortunately, bad actors continue to profit from these activities and are leveraging AI-enhanced techniques to create more convincing phishing schemes, guaranteeing that this problem will continue to plague businesses.”
The report is curated by the advanced Acronis Cyber Protection Operation Center (CPOC) and includes data surrounding ransomware threats, phishing, malicious websites, software vulnerabilities and a security forecast for 2024. Released biannually, the Acronis Cyberthreats Report sets the industry standard by consistently establishing itself as a benchmark for cybersecurity intel. By regularly publishing reports to stay abreast of cybersecurity developments, Acronis’ analysis of the global cyberthreat landscape is published for the benefit of its users and partners.
For more information, download a copy of the full Acronis End-of-Year Cyberthreats Report 2023 here: https://go.acronis.com/cyberthreats-2023-h2
To learn more about the report and its findings, visit the Acronis blog post: https://www.acronis.com/en-us/blog/posts/ransomware-and-software-vulnerabilities-created-the-most-havoc-in-h2-2023
Visit www.acronis.com for information about Acronis solutions that help combat security challenges like these – including the new, groundbreaking native integration of Acronis Advanced Security and Endpoint Detection and Response (EDR) solutions.
About Acronis
Acronis unifies data protection and cybersecurity to deliver integrated, automated cyber protection that solves the safety, accessibility, privacy, authenticity, and security (SAPAS) challenges of the modern digital world. With flexible deployment models that fit the demands of service providers and IT professionals, Acronis provides superior cyber protection for data, applications, and systems with innovative next-generation antivirus, backup, disaster recovery, and endpoint protection management solutions powered by AI. With advanced anti-malware powered by cutting-edge machine intelligence and blockchain based data authentication technologies, Acronis protects any environment - from cloud to hybrid to on premises - at a low and predictable cost.
Acronis is a Swiss company, founded in Singapore. Celebrating two decades of innovation, Acronis has 1,800+ employees in 45 locations. Acronis Cyber Protect solution is available in 26 languages in over 150 countries and is used by 20,000+ service providers to protect over 750,000 businesses.
Acronis Media Contact:
Julia Carfagno
Julia.Carfagno@acronis.com
A photo accompanying this announcement is available at https://www.globenewswire.com/NewsRoom/AttachmentNg/c1a2e8c4-a892-4d4b-a57d-2fc47fdf3b59
- St Kitts and Nevis Paves the Way for its Global Citizens to “Connect, Collaborate and Celebrate” at
- 聚焦能效创新 聚力绿色发展系统节能技改项目解决方案
- 生态农业引领绿色发展 ———走进大化玲欣家庭农场
- 曝光四川点亮饰界建筑装饰材料有限公司能让心灵沉醉繁华的艺术世界
- 广州幼儿园彩绘哪家做的好?粤江墙绘壁画公司值得推荐
- 创新大赛专访丨金智维荣膺2023年度数字化创新服务卓越品牌:专注提供企业级RPA平台,重塑企业生产力,让员工更有价值
- 海信中央空调领先智能生产线 严苛为品质“把关”
- “制造业皇冠上的明珠”!海信日立获工信部认定制造业单项冠军企业
- 阿里核心业务互动频繁,业务上市计划均有变化
- 麦谷村斩获2023年度TBI杰出品牌创新奖双项大奖
- 亿咖通科技已获23项行业认证,率先构建全球交付坚实基础
- 宁波干冰清洗服务干冰清洗技术冷链干冰
- 首届HKIFF Industry - CAA 中国类型电影计划(HCG)公布 6 个入围项目
- nCino’s Single Platform Selected by Desjardins to Automate Loan Origination Process Through Machine
- 《公益中国时代行》广东省社区青少年心理帮扶计划率先启航
- To Bolster Global Efforts in Combating Antibiotic-Resistant Bacteria KFSH&RC Scientists Discover
- instagram如何高效群发引流-ins引流效果最好软件推荐
- 寻迹溯源相互制发展,中财保险学院师生走进信美相互人寿
- 将空间场景还给生活!2024西安买房还看招商蛇口!
- 三米粥铺腊八节营销大捷,品类领跑展现强劲实力!
推荐
- 奥运冠军刘翔更新社交账号晒出近照 时隔473天更新动态! 2月20日凌晨2点,奥运冠军刘翔更新社交账号晒 资讯
- 中央气象台连发四则气象灾害预警 暴雪橙色预警+冰冻橙色预警+大雾黄色预警+ 资讯
- 私域反哺公域一周带火一家店! 三四线城市奶茶品牌茶尖尖两年时间做到GMV 资讯
- 男子“机闹”后航班取消,同机旅客准备集体起诉 1月4日,一男子大闹飞机致航班取消的新闻登上 资讯
- 王自如被强制执行3383万 据中国执行信息公开网消息,近期,王自如新增一 资讯
- 国足13次出战亚洲杯首次小组赛0进球 北京时间1月23日消息,2023亚洲杯小组 资讯
- 抖音直播“新红人”进攻本地生活领域 不难看出,抖音本地生活正借由直播向本地生活 资讯
- 看新东方创始人俞敏洪如何回应董宇辉新号分流的? (来源:中国证券报) 东方甄选净利润大幅下滑 资讯
- 一个“江浙沪人家的孩子已经不卷学习了”的新闻引发议论纷纷 星标★ 来源:桌子的生活观(ID:zzdshg) 没 资讯
- 周星驰新片《少林女足》在台湾省举办海选,吸引了不少素人和足球爱好者前来参加 周星驰新片《少林女足》在台湾省举办海选,吸 资讯