The cybersecurity threat landscape is constantly evolving as new threat actors, technologies and threats emerge, creating an uncertain world for organisations and the public alike with potential pitfalls in even opening an email. Cybersecurity professionals must stay vigilant and ahead of rapidly evolving schemes, threats and strategies by cybercriminals who are leveraging open source technologies and are becoming increasingly sophisticated. A broad overview of the threat landscape Based on the findings from the Kaspersky Incident Response Analyst Report 2023, the present scale of cyberthreats saw that 75% of cyberattack attempts exploited Microsoft Office.
In terms of infection vectors, 42.3% of successful attempts used publicly available applications with 20.3% using compromised accounts while just 8.
5% used brute force credentials. When it comes to infection vectors, most incursions were on attackers using stolen or purchased credentials before committing a remote desktop protocol (RDP) attack, phishing emails loaded with malicious attachments and links and malicious files on public resources imitating document templates. At a silver lining, attack attempts dropped by 36% in Q1 of 2023 compared to the same period in 2022.
After incurring a cyberattack, the aftermath resulted in 33.3% of organisations getting their data encrypted, 21.1% incurring data theft and 12.
2% encountered compromised active directories. Based on a prior Kaspersky survey conducted in 2022, the biggest.