CYBERCRIMINALS NARROW THEIR FOCUS ON SMBS ACCORDING TO THE ACRONIS CYBERTHREATS

CYBERCRIMINALS NARROW THEIR FOCUS ON SMBS ACCORDING TO THE ACRONIS CYBERTHREATS

Thu, 08/05/2021 - 17:40

Despite the perception they are too small to target, SMBs are increasingly vulnerable due to supply-chain attacks and greater use of automation by ransomware groups

acronis mid-year report 2021

Acronis, the global leader in cyber protection, released the Acronis Cyberthreats Report Mid-year 2021 update, an in-depth review of the cyberthreat trends the company’s experts are tracking. Released at this week’s Black Hat 2021 event, where Acronis is a Diamond sponsor, the report warns that small and medium-sized businesses (SMBs) are at particular risk based on the attack trends seen during the first six months of the year.

The report revealed that during the first half of 2021, 4 out of 5 organizations experienced a cybersecurity breach originating from a vulnerability in their third-party vendor ecosystem. That’s at a time when the average cost of a data breach rose to around $3.56 million, with the average ransomware payment jumping 33% to more than $100,000. 

While that represents a major financial hit to any organization, those amounts would sound the death-knell for most SMBs, which Acronis believes is a major concern for the second half of 2021.

“While the increase in attacks affects organizations of all sizes, something that’s under-reported in the coverage of current cyberthreat trends is the impact on the small business community,” explained Candid Wüest, Acronis VP of Cyber Protection Research. “Unlike larger corporations, small and medium-sized companies don’t have the money, resources, or staffing expertise needed to counter today’s threats. That’s why they turn to IT service providers – but if those service providers are compromised, those SMBs are at the mercy of the attackers.”

By utilizing supply-chain attacks against managed service providers (MSPs), attackers gain access to both the MSP business and all of its clients. As seen in the SolarWinds breach last year and the Kaseya VSA attack earlier in 2021, one successful attack means they can breach hundreds or thousands of SMBs downstream.

At Black Hat 2021, Wüest will provide an in-depth look at how supply-chain attacks against IT service providers pose a particular threat to SMBs in a session titled Ransomware Attacks Against MSPs – A Nightmare for SMBs.

Additional takeaways at the mid-year mark

Beyond the high-profile attacks that have dominated the headlines during the past six months and the concerns Acronis is raising about the impact on MSPs and small businesses, the Acronis Cyberthreats Report Mid-year 2021 also noted: 

  • Phishing attacks are rampant. Using social engineering techniques to trick unwary users into clicking malicious attachments or links, phishing emails rose 62% from Q1 to Q2. That spike is of particular concern since 94% of malware is delivered by email. During the same period, Acronis blocked more than 393,000 phishing and malicious URLs for clients, preventing attackers from accessing valuable data and injecting malware into the client’s system. 

  • Data exfiltration continues to increase. In 2020, more than 1,300 victims of ransomware had their data publicly leaked following an attack, as cybercriminals look to maximize the financial gain from successful incidents. During the first half of 2021, more than 1,100 data leaks have already been published – which projects a 70% increase for the year.

  • Remote workers continue to be a prime target. The reliance on remote workers continues in the wake of the COVID-19 pandemic. Two-thirds of remote workers now use work devices for personal tasks and use personal home devices for business activities. As a result, attackers have been actively probing remote workers. Acronis observed more than twice the number of global cyberattacks, with a 300% increase in brute-force attacks against remote machines via RDP.

Creating the Acronis Cyberthreats Report mid-year 2021

The Acronis Cyberthreats Report Mid-year 2021 is based on examining attack and threat data collected by the company’s global network of Acronis CPOCs, which monitor and research cyberthreats 24/7. Malware data was collected by more than 250,000 unique endpoints around the world running Acronis Cyber Protect (either as a client of an MSP using Acronis Cyber Protect Cloud or a business running Acronis Cyber Protect 15). The mid-year update covers attacks targeting endpoints detected between January and June 2021.

The full report provides in-depth insights into the top security/threat trends the CPOCs observed during the first half of 2021, a review of malware families and related statistics, a deep dive into ransomware’s most dangerous groups, the vulnerabilities that contribute to successful attacks, and Acronis’ security recommendations for the remainder of 2021 and beyond.

You can download a copy of the full Acronis Cyberthreats Report Mid-year 2021 here.

About Acronis

Acronis unifies data protection and cybersecurity to deliver integrated, automated cyber protection that solves the safety, accessibility, privacy, authenticity, and security (SAPAS) challenges of the modern digital world. With flexible deployment models that fit the demands of service providers and IT professionals, Acronis provides superior cyber protection for data, applications, and systems with innovative next-generation antivirus, backup, disaster recovery, and endpoint protection management solutions. With advanced anti-malware powered by cutting-edge machine intelligence and blockchain-based data authentication technologies, Acronis protects any environment – from cloud to hybrid to on-premises – at a low and predictable cost.

Founded in Singapore in 2003 and incorporated in Switzerland in 2008, Acronis now has more than 1,600 employees in 34 locations in 19 countries. Its solutions are trusted by more than 5.5 million home users and 500,000 companies, including 100% of the Fortune 1000, and top-tier professional sports teams. Acronis products are available through 50,000 partners and service providers in over 150 countries in more than 40 languages.

Web Exclusive

Commenting on www.vagabond.bg

Vagabond Media Ltd requires you to submit a valid email to comment on www.vagabond.bg to secure that you are not a bot or a spammer. Learn more on how the company manages your personal information on our Privacy Policy. By filling the comment form you declare that you will not use www.vagabond.bg for the purpose of violating the laws of the Republic of Bulgaria. When commenting on www.vagabond.bg please observe some simple rules. You must avoid sexually explicit language and racist, vulgar, religiously intolerant or obscene comments aiming to insult Vagabond Media Ltd, other companies, countries, nationalities, confessions or authors of postings and/or other comments. Do not post spam. Write in English. Unsolicited commercial messages, obscene postings and personal attacks will be removed without notice. The comments will be moderated and may take some time to appear on www.vagabond.bg.

0 comments

Add new comment

The content of this field is kept private and will not be shown publicly.

Restricted HTML

  • Allowed HTML tags: <a href hreflang> <em> <strong> <cite> <blockquote cite> <code> <ul type> <ol start type> <li> <dl> <dt> <dd> <h2 id> <h3 id> <h4 id> <h5 id> <h6 id>
  • Lines and paragraphs break automatically.
  • Web page addresses and email addresses turn into links automatically.

Discover More

INTELLIGENT BUSINESS
In different historical periods different figures were the ones who set the pulse of events and the society's development.
A PERIOD OF POSITIVE TRANSFORMATION
In the past year and a half we got used to talking about change. We accepted unexpected events of a global scale as part of life and we brought back from the past the worn-out wisdom about crisis as an opportunity.
MISSION: CYBERSECURITY
This May, in just a couple of days, the ordinary Internet user became aware of two disturbing events. Hackers blocked the activities of one the largest fuel pipeline companies in the US.
THE AGE OF TRANSPORTATION
When a year ago the global pandemic turned the life of humanity on its head, we realised how dependent we were on regular supply of fuel, food, medicines and other essential goods and resources.
Vladimir Natchev.jpg
MANAGEMENT 2.0
As with most disruptive ideas, this concept is as straightforward as it is hard to implement. Together with the EPAM Bulgaria team, we took the challenge to turn it into a reality.

IT STARS
When talking about the Bulgarian economy in 2020, one field attracts the attention – information and communication technologies (ICT). This is rather understandable. The sector is the third most developed one in the country after trade and industry.
Acronis Virtual Summit
ACRONIS GLOBAL CYBER SUMMIT FEATURES A LINEUP OF THOUGHT-LEADERS ON THE FUTURE OF MODERN CYBER PROTECTION
Acronis, a global leader in cyber protection, today announced several of the keynote speakers and panelists participating in the annual Acronis Global Cyber Summit 2020, taking place as a free virtual

Acronis Cyber Protect_key visual.png
NEW RESEARCH OF CYBER READINESS DURING THE PANDEMIC REVEALS SECURITY GAPS AND THE NEED FOR NEW SOLUTIONS
Acronis, a global leader in cyber protection, today announced the release of Acronis Cyber Protect 15, which integrates backup,

SECURE HOME FOR THE BUSINESS
What will be the future of office spaces and work processes? The Covid-19 pandemic forced us to rethink our ideas of what workspace should look like and function.