Email attacks surge 293% in first half of 2024: Acronis

SCHAFFHAUSEN, SWITZERLAND — A new cybethreat report by cybersecurity and data protection technology company Acronis revealed a 293% surge in email attacks in the first half of 2024 compared to the same period in 2023. 

The report, which analyzed data from over one million unique Windows endpoints across 15 countries, provides a comprehensive overview of the current cyber threat landscape. Among the notable findings are:

• Spam and malware: 27.6% of all received emails were classified as spam, with 1.5% containing malware or phishing links.
• Phishing attempts: 26% of users encountered phishing attempts through malicious URLs, underscoring the continued reliance on this attack vector by cybercriminals.
• Email volume: Organizations experienced a 25% increase in email communications, which coincided with a 47% rise in email attacks.

Malware and ransomware on the rise

The report also highlights a notable increase in malware and ransomware activities:

• Malware samples: The number of new malware samples has increased by 5% since Q4 2023. Each malware sample lived an average of 2.3 days in the wild before disappearing, and 82% of samples were seen only once.
• Ransomware cases: There were 1,048 publicly reported ransomware cases in Q1 2024, a 23% increase over Q1 2023. Three highly active groups — LockBit, Black Basta, and PLAY — were responsible for 35% of these attacks, with LockBit alone accounting for 20%.

Ransomware activity also continues to climb despite a 46% decrease in ransom payments in H1 2024. 

LockBit, although disrupted by Operation Cronos led by the U.K.’s National Crime Agency and Europol, reemerged and resumed its activities. Additionally, 10 new ransomware groups emerged in Q1 2024, further complicating the threat landscape.

AI’s role in cybercrime

The report also highlights the role of AI in cybercrime, distinguishing between AI-generated threats and AI-enabled malware. 

AI-generated threats are created using AI techniques but do not incorporate AI in their operations. Meanwhile, AI-enabled malware integrates AI within its functionality, often communicating with backend AI models to adapt and modify behavior.

Acronis observed six popular AI-generated attacks, including malicious emails, deepfakes used in business email compromise, deepfake extortions, KYC bypassing, script generations, and malware generation. 

Security recommendations

In response to the increasing volume and complexity of cyber threats, Acronis recommends a holistic approach to cybersecurity. This includes:

• Security awareness training: Educating employees on recognizing and reporting phishing attempts, social engineering tactics, and suspicious activities.
• Integrated security solutions: Leveraging advanced endpoint protection solutions like Extended Detection and Response (XDR) and multi-factor authentication to enhance visibility and protection across attack surfaces.

Acronis’ latest cyberthreats report highlights the evolving and complex nature of the cyber threat landscape. As cybercriminals continue to exploit vulnerabilities and leverage AI for more sophisticated attacks, businesses must prioritize comprehensive security strategies to safeguard their data and systems.