Acronis, a global leader in cybersecurity and data protection, has released its biannual Cyberthreats Report, H2 2024, revealing alarming trends in AI-driven cyberattacks. The report, authored by the Acronis Threat Research Unit (TRU), provides insights into evolving attack patterns, including the rise of email-based threats, ransomware, and vulnerabilities within managed service provider (MSP) networks.
Findings
Email Attacks Surge
- 197% increase in email cyberattacks compared to H2 2023
- 50% of users targeted by email-based attacks at least once
- Phishing remains the top attack vector, with 33% of MSPs experiencing phishing campaigns
Ransomware Threats Escalate
- 1,712 ransomware cases reported in Q4 2024
- Notable ransomware groups: RansomHub, Akira, Play, KillSec, and Cl0p
- MSPs increasingly targeted by APT-linked ransomware groups, using stolen credentials and supply chain attacks
Malicious URLs & Spam on the Rise
- 48M+ malicious URLs blocked in Q4 2024 (+7% from Q3)
- 31.4% of all emails in H2 2024 were spam; 1.4% contained malware or phishing links
Regional Insights
- Most targeted for malware in Dec 2024: UAE, Singapore, Italy
- Highest % of blocked malicious URLs: UAE (16.2%), Brazil (13.2%), Singapore (12.0%)
Emerging Cybersecurity Challenges
MSPs as Prime Cyberattack Targets
- Cybercriminals are shifting from opportunistic attacks to strategic infiltrations
- Ransomware actors exploit MSP networks to reach client systems, posing a high-stakes cybersecurity risk
AI-Generated Attacks & RMM Risks
- AI-powered threats are increasing in sophistication and frequency
- Remote Monitoring & Management (RMM) tools create security gaps when mismanaged, making them prime entry points for attackers
“This report highlights the alarming rise of AI-driven attacks and sophisticated ransomware campaigns. It provides actionable insights to help organizations and MSPs stay ahead of cyber risks.” – Gerald Beuchelt, CISO, Acronis
Looking Ahead: 2025 Predictions & Recommendations
The report outlines top vulnerabilities of 2024 and offers proactive strategies to mitigate emerging threats in 2025. Organizations are urged to strengthen their email security, MSP defenses, and RMM security controls to counter the growing cyber risks.
