Cyberattacks in 2024 saw an 84% increase in credential theft, with hackers opting for quicker exit routes due to improved detectors and increased law enforcement. IBM’s report noted that 70% of attacks involved critical infrastructure, with valid accounts, phishing, and exploiting public applications being the main methods used. There was a rise in phishing emails delivering infostealers, and so-called “identity attacks” have become cheap and profitable. Infrastructure crimes continued to exploit legacy technologies, while the use of ransomware declined. AI security remained stable, with no large-scale attacks reported.
State-sponsored cyber groups are flocking to the 'ClickFix' social engineering technique
State-sponsored hackers from North Korea, Iran, and Russia have begun using the ‘ClickFix’ social engineering technique with great success. This method involves tricking individuals into
