Within the dynamic world of cybersecurity, 2023 marked a big shift, underscored by a 1760% enhance in Enterprise E mail Compromise (BEC) assaults. This startling revelation, detailed in Notion Level’s β2024 Annual Report: Cybersecurity Developments & Insightsβ, factors to the rising sophistication of cyber threats. The Tel Aviv-based chief in superior electronic mail and workspace safety options highlights how Generative AI (GenAI) applied sciences have turn into a instrument for risk actors, enabling them to craft intricate social engineering assaults which might be more and more tough to detectββ.
The previous yr’s cyber panorama was formed by the outstanding advances in GenAI, which malicious actors used to reinforce the size and complexity of their assaults. In 2022, BEC assaults constituted a mere 1% of all cyberattacks, however by 2023, they accounted for a staggering 18.6%ββ.
Phishing continued to be the dominant cyber risk, accounting for over 70% of all assaults, with little change from the earlier yr. Nevertheless, quishingβa brand new type of risk exploiting QR codesβemerged, accounting for two.7% of all phishing makes an attempt. The belief positioned in QR codes has been manipulated by attackers, turning a easy scan into a big safety threat. In 2023, 1 out of each 18 QR codes despatched through electronic mail was maliciousββ.
Moreover, the prevalence of two-step phishing assaults noticed a 175% enhance. These multi-stage assaults, tougher to detect as a result of their use of reputable companies and internet hosting websites, exploit the reputations of well-known domains, evading detection extra simplyββ.
The report additionally highlights a 350% rise in account takeover (ATO) threats, the place reputable accounts are compromised after which utilized in extremely focused assaults. Model impersonation assaults additionally noticed a big enhance, with 55% of all such assaults in 2023 mimicking the focused worker’s groupββ.
E mail remained the first assault vector, with 1 in 5 emails being malicious or spam. Menace actors expanded their horizons to focus on organizations via different means as properly, with phishing assaults through internet browsers growing considerably and malware distribution in M365 Apps like OneDrive, SharePoint, and Groups accounting for 65% of assaults. Over 50% of assaults focused CRMs like Zendesk and Salesforceββ.
Yoram Salinger, CEO of Notion Level, emphasizes the influence of GenAI’s proliferation on organizational safety postures. He highlights the evolving nature of the trendy workspace, more and more reliant on cloud-based electronic mail, collaboration, and productiveness instruments accessible from any browser. Notion Level’s dedication to defending this contemporary workspace is obvious of their consolidated risk prevention answer, which mixes multi-layered AI-powered detection with managed incident response companiesββ.
Notion Level, a Prevention-as-a-Service firm, stands on the forefront of next-generation prevention, detection, and response to assaults throughout electronic mail, cloud collaboration apps, and internet browsers. Their cloud-native service, straightforward to deploy and handle, is designed to switch cumbersome legacy techniques. It prevents phishing, BEC, spam, malware, Zero-days, ATO, and different superior assaults, defending Fortune 500 enterprises and organizations globallyββ.
This complete report by Notion Level presents invaluable insights into the evolving cyber risk panorama, underscoring the necessity for revolutionary safety options in an period the place GenAI and superior social engineering ways have gotten the norm. You may view the complete report right hereββ.