In the first half of 2024, the US experienced a significant increase in cyber threats, with over 3,438 high and critical alerts recorded, marking a 46.15% rise from the previous year. This surge in cyber activity highlights a troubling trend across various sectors, with manufacturing and industrial products remaining the most targeted. The sector saw 377 confirmed incidents involving ransomware and database leaks during this period.
The report from Critical Start’s Cyber Research Unit (CRU) also noted a 15% increase in cyber-attacks on professional services, bringing the total to 351 cases. Legal services and supply chains are particularly vulnerable due to the sensitive data and intellectual property they handle. In contrast, the technology sector experienced a 12.75% decrease in incidents, while the healthcare and life sciences sectors saw a dramatic 180% rise in ransomware and database leaks, notably in February 2024, following attacks on major healthcare providers.
Emerging threats and trends include a significant rise in deepfake fraud attempts, with a 3,000% spike reported, and an increasing abuse of open-source repositories for supply chain attacks. Business email compromise (BEC) attacks are now targeting smaller businesses more frequently. Experts predict that ransomware attacks will continue to target critical infrastructure and supply chains, with growing use of AI for evasion and double extortion tactics.
To address these escalating threats, organizations are advised to adopt a zero-trust security model, emphasizing strict access controls and continuous monitoring. The integration of real-time threat intelligence and the enforcement of least-privilege access are recommended to enhance resilience and mitigate the impact of future cyber incidents.
Reference:
