الرئيس التنفيذي
أشرف الحادي

رئيس التحرير
فاطمة مهران

Valid accounts showed significant increase as initial attack vector in 2024

Valid accounts are increasingly being leveraged as an initial attack vector in 2024, representing 31.4% of cases. Public-facing applications still hold the top position with 39.2% of cases. These findings were reported in the recent Kaspersky Incident Response analyst report.
The Kaspersky Incident Response analyst report provides insights into cyberattacks investigated by Kaspersky team in 2024, using data from organizations seeking help with incident response and highlights trends in security threats across various sectors and regions. The report aids organizations in enhancing their security measures and developing effective incident response strategies.
According to the report, in a concerning trend that has persisted for years, public-facing applications have once again emerged as the primary vector for cyber attacks, accounting for 39.2% of cases in 2024.
Valid accounts have solidified their position as the second most common attack vector, representing 31.4% of incidents and showing a significant increase compared to 2023. This surge indicates a growing number of companies being targeted by initial access brokers (IABs), who capitalize on compromised credentials sold on the darknet to facilitate further attacks. This trend is particularly alarming in the context of Ransomware-as-a-Service (RaaS), where IABs play a crucial role in streamlining cybercriminal operations. The data also revealed that victims in these cases were often compromised beforehand, leading to leaked credentials without immediate detection.
Trusted relationships have seen an uptick from the previous year, now accounting for 12.8% of attack vectors, while phishing remains a significant threat, utilized in nearly one out of every ten cases (9.8%).
“Cyber threats continue to evolve relentlessly, with attackers adapting their methods to exploit the most vulnerable points in companies’ defenses. This highlights the critical need for organizations to not only strengthen their immediate security measures but also to cultivate a proactive and adaptive incident response culture that can stay ahead of these emerging risks,” comments Konstantin Sapronov, Head of Global Emergency Response Team at Kaspersky.
To protect businesses from possible threats, Kaspersky experts recommend:
• Implementing robust password policy and multifactor authentication processes.
• Removing management ports from public access.
• Establishing a zero-tolerance policy for patch management or compensation measures for public-facing applications.
• Ensuring that employees maintain a high level of security.
• Use services like Kaspersky Incident Response or Kaspersky Managed Detection and Response to identify and stop the attack on early stages, before cybercriminals can reach their final goals.
The full Incident Response analyst report 2024 is available via this link.

Related Posts

Zoho Launches Projects Plus a Smart, AI-Powered Project Management Solution for Enterprises in MENA

2B Honors 40+ Long-Term Employees as it Celebrates 25 Years of Growth, Commitment, and Innovation

Hyundai Motor Company President and CEO José Muñoz Holds Town Hall with Employees at Namyang R&D Center,

UK Emerges as Global Leader in Wave and Tidal Energy, EIC Report Shows

YOUR ULTIMATE EID GETAWAY: STAY, PLAY, AND EXPLORE YAS ISLAND WITH W ABU DHABI

Forbes Middle East Unveils the Middle East’s Top 40 Asset Managers 2025

Monty Mobile Leads the Conversation on Telecom Innovation at MWC Barcelona 2025

ADFD launches AED 440 million Sofitel Legend Pyramids Giza project to boost Egypt’s tourism sector

آخر الأخبار
Zoho Launches Projects Plus a Smart, AI-Powered Project Management Solution for Enterprises in MENA زوهو تطلق منصة "بروجيكتس بلاس" الذكية المدعومة بالذكاء الاصطناعي لإدارة المشاريع للمؤسسات في منطقة ا... "إخواتي" دراما عربية مشوقة على شاشة تلفزيون دبي بدءاً من 16 مارس «صن رايز» تستضيف الفنان ناصيف زيتون في غنائي ضخم بشرم الشيخ 21 أبريل للعام الثالث على التوالي، باي سكاي تحافظ على مكانتها ضمن قائمة فوربس لأقوى 50 شركة تكنولوجيا مالية ف... كيونت تحصد ثلاثة جوائز فضية من جوائز ستيفي تقديرًا لجهودها في مجالات الاستدامة والمسؤولية المجتمعية ... مجموعة شركات بيبسيكو مصر تحصد جائزة "أثر" تقديرًا لريادتها في الاستدامة وتمكين المجتمع المجلس الثقافي البريطاني يحتفل بانجازات الفائزين ببرنامج "نجوم العلوم" NVIDIA تُطلق معالجة الصور بالذكاء الإصطناعي وتحديثات RTX قبل GDC 2025 حمادة هلال في المداح 5.. الحرب ضد بنات إبليس تشتعل في الحلقة 18 Valid accounts showed significant increase as initial attack vector in 2024 تقرير كاسبرسكي يكشف عن ارتفاع استغلال الحسابات الصالحة كمسار رئيسي للاختراق 2B Honors 40+ Long-Term Employees as it Celebrates 25 Years of Growth, Commitment, and Innovation مسلسل حكيم باشا الحلقة 17.. بعد ترك مصطفى شعبان للأموال النيران تشتعل بين ولاد عمه والضحية "ياسين" توبى تكرّم أكثر من 40 موظفاً بمناسبة احتفالها بمرور 25 عاماً من النمو والالتزام والابتكار Hyundai Motor Company President and CEO José Muñoz Holds Town Hall with Employees at Namyang R&D Cen... رئيس شركة هيونداي موتور والرئيس التنفيذي خوسيه مونوز يعقد اجتماعًا عامًا مع الموظفين في مركز ناميانج... UK Emerges as Global Leader in Wave and Tidal Energy, EIC Report Shows لكزس تُعزز ريادتها في تكنولوجيا السيارات الكهربائية مع إطلاق أنظمة قيادة مبتكرة الرئيس السيسى: الدولة تتكبد 800 مليون دولار خسائر شهرية من إيرادات قناة السويس