Email Attacks Doubled In 2023

Uploaded on 2024-03-08 in NEWS-Cybersecurity News, FREE TO VIEW

The leader cyber security  firm Acronis has released findings of its regular cyber threats report for the second half of 2023 called Acronis Cyberthreats Report H2 2023.  Notably, it uncovers the rise of Generative AI (Gen-AI) systems to create malware and orchestrate serious cyber attacks.

The report provides an in-depth analysis and prescriptive outlook on key security issues and prevalent cyber-threats worldwide.

By leveraging data collected from over 1,000,000 unique endpoints across 15 key countries, the findings conclude that AI-enhanced phishing affected over 90% of organisations and contributed to a 222% surge in email attacks in 2023 as compared to the second half of 2022.

Ransomware variants have decreased, yet the most effective attack vector are still causing companies across the globe to lose both their data and their money. In particular, Acronis identifies  the lack of strong security solutions which should be detecting the exploitation of zero-day vulnerabilities.

Organisations are falling victim to attacks due to the delay in patching vulnerable software which allows threat actors to gain domain administrative rights, uninstall security tools and infiltrate sensitive information. 

“There’s a disturbing trend being recognised globally where bad actors continue to leverage ChatGPT and similar generative AI systems to increase cyberattack efficiency, create malicious code, and automate attacks,” observed Candid Wüest, Acronis VP of Product Management. “Now, more than ever, corporations need to prioritise comprehensive cyber protection solutions to ensure business continuity.” he said.

These IT resources are allies to businesses who seek robust IT infrastructure and sound cyber security but because they centralise services to numerous businesses, from SMBs to large corporations; the scaling efficiencies that make them a business asset also make them a single point of failure where cyber criminals can exploit multiple entities through a single attack.

The report notes how more advanced tactics like supply chain attacks, AI-driven attacks and state-sponsored incursions are likely to intensify. MSPs should brace themselves for threats unique to their operations, including "island hopping," in which attackers use an MSP's infrastructure to attack clients, as well as "credential stuffing," which exploits an MSP's broad access to systems.

Key findings and themes from the report include:

Global Threat Landscape

  • Singapore, Spain, and Brazil emerged as the most targeted focus countries for malware attacks in Q4 2023.
  • Acronis blocked nearly 28 million URLs at the endpoint in Q4 2023, reflecting a 36% decrease compared to Q4 2022.
  • 33.4% of received emails were identified as spam, with 1.5% containing malware or phishing links.
  • The average lifespan of a malware sample in the wild is 2.1 days.
  • In Q4 2023, 1,353 ransomware cases were explicitly mentioned, with notable contributions from LockBit, Play, ALPHV and the active Toufan group.

Cyber Security Trends H2 2023

  • Ransomware remains a major threat to large and medium-sized businesses, impacting critical sectors such as government and health care.
  • Data stealers are the second most prevalent threat, contributing to most data breaches.
  • The use of generative AI systems, including ChatGPT, for launching cyberattacks and creating malicious content is on the rise.

Ransomware Trends

  • Known ransomware gangs in 2023 include LockBit, Cl0P, BlackCat / ALPHV, Play, and 8Base.
  • The ALPHV gang, whom the FBI targeted in December 2023, breached over 1,000 entities, demanded over $500 million, and received over $300 million in ransom payments.
  • Regardless of a decrease in ransomware variants, businesses continue to suffer data and financial losses.

Attacks on MSPs Are Increasing

  • Attacks on managed service providers (MSPs) continue, with a recent high-profile breach affecting multiple US (United States) government agencies.
  • Microsoft cloud email account vulnerabilities led to the compromise of 60,000 emails from 10 US State Department accounts.

Phishing & Amail Attacks Remain The Main Attack Vectors

  • The total number of email-based attacks detected in 2023 increased by 222%.
  • Organisations experienced a 54% increase in the number of attacks per organisation.
  • 91.1% of organisations faced AI-enhanced phishing attacks.

Cyber Criminals Embrace Malicious AI Tools 

  • Cyber criminals are leveraging malicious AI tools, including WormGPT, FraudGPT, DarkBERT, DarkBART and ChaosGPT.
  • The public release of ChatGPT has increased the use of generative AI for cyberattacks.

Bad actors continue to profit from these activities and are leveraging AI-enhanced techniques to create more convincing phishing schemes, guaranteeing that this problem will continue to plague businesses.

Acronis       Image: Unsplash

You Might Also Read: 

BEC Attacks: Trends & Predictions For 2024:

DIRECTORY OF SUPPLIERS - Email Security:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Cybercrime Hit 1.5m UK Businesses In 2023
Russian Military Botnet Dismantled »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

Infosecurity Europe, 3-5 June 2025, ExCel London

Infosecurity Europe, 3-5 June 2025, ExCel London

This year, Infosecurity Europe marks 30 years of bringing the global cybersecurity community together to further our joint mission of Building a Safer Cyber World.

Rackspace Technology

Rackspace Technology

Rackspace Technology is a leading provider of managed services across all major public and private cloud technologies. Secure your IT environments with powerful cloud security solutions and support.

CloudCheckr

CloudCheckr

CloudCheckr is a next-gen cloud management platform that unifies Security & Compliance, Inventory & Utilization and Cost Management.

evoila

evoila

evoila GmbH is one of the leading providers in consulting, analysis, implementation and management of cloud infrastructure.

Cyber Command

Cyber Command

Our Managed IT service allows clients to offload the management of day-to-day computer, server, and networking support to our team of professionals.

Exonar

Exonar

We enable organisations to better organise their information, removing risk and making it more productive and secure.

Cybersecurity Innovation Hub

Cybersecurity Innovation Hub

The main objective of the Hub is to bring cybersecurity and other advanced technologies closer to companies and as a result help to increase their performance as Industry 4.0.

Rocheston

Rocheston

Rocheston is an innovation company with cutting-edge research and development in emerging technologies such as Cybersecurity, Internet of Things, Big Data and automation.

BCN Group

BCN Group

BCN Group is an agile IT solutions provider. We are experts in delivering and managing business-critical technology solutions.

CyberAcuView

CyberAcuView

CyberAcuView is a company dedicated to enhancing cyber risk mitigation efforts across the insurance industry.

CloudCover

CloudCover

CloudCover is a software-defined cybersecurity risk solution that provides risk awareness, risk analytics, and data security in real time.

Tech Seven Partners

Tech Seven Partners

At TechSeven Partners, we provide a full suite of cyber security solutions for your business including network monitoring, onsite and cloud backup solutions, HIPAA or PCI compliance.

Campus cyber

Campus cyber

A project initiated by the President of the Republic, the Cyber Campus is the totem site of cybersecurity that brings together the main national and international players in the field.

Detego Global

Detego Global

Detego Global are the creators of the Detego® Unified Digital Forensics Platform, a suite of modular tools used globally by military, law enforcement and intelligence agencies, and enterprises.

Excite Cyber

Excite Cyber

Excite Technology Services (formerly Cipherpoint) is focused on improving the security posture of our customers.

NeuroID

NeuroID

NeuroID combines the power of industry-leading behavioral analytics with advanced device and network intelligence to create your first line of defense against malicious bots, bad actors, and fraud.

Incode

Incode

Incode is the leading provider of world-class identity solutions that is reinventing the way humans authenticate and verify their identities online.