Learning from the 2024 CrowdStrike Global Threat Report
As the digital landscape evolves, so too does the nature of cyber threats. A significant shift towards malware-free attacks has been observed, where cybercriminals exploit legitimate administrative tools and protocols to carry out their activities covertly. In a recent webinar*, co-hosted by Secure Agility and CrowdStrike, Anthony Romano, Identity Security Manager, pointed out that "in 2023, 75% of attacks were malware-free," marking a rise from the previous year's statistics. This trend indicates a move away from detectable malware to more stealthy techniques that blend into normal network activity.
Malware-free attacks are particularly challenging to detect as they utilise legitimate tools and processes, making traditional signature-based detection methods less effective. Therefore, it's crucial for organisations to leverage advanced threat detection systems that focus on behavioural analytics and anomalies. Romano stresses the critical importance of implementing systems like Endpoint Detection and Response (EDR) and User and Entity Behaviour Analytics (UEBA), which provide comprehensive visibility and proactive threat detection capabilities across the network.
Concurrently, the rise of artificial intelligence has given a new edge to social engineering attacks. AI technologies enable attackers to automate and refine their phishing campaigns, creating messages that mimic legitimate communications almost perfectly. This use of AI in crafting phishing emails and other social engineering tactics represents a significant escalation in threat sophistication, making traditional awareness and training programs less effective.
To counter these AI-enhanced threats, organisations must deploy sophisticated phishing detection tools that utilise AI to understand and predict new attack methods. Equally important is the need for security awareness training to evolve and keep pace with these advanced threats. Interactive simulations and regular updates on the latest phishing trends are essential to prepare employees to recognize and resist these increasingly sophisticated attacks.
Integrating comprehensive security measures to address both malware-free and AI-enhanced threats is crucial. Organisations should adopt a layered security approach, incorporating advanced detection technologies, thorough training programs, and robust security policies to mitigate these risks. Apurv Dogra, Cyber Product Lead at Secure Agility, supports this approach and highlights that Secure Agility is uniquely positioned to assist customers in implementing these measures in a simplified and effective manner. “By understanding the dual threat posed by these advanced attacks, companies can better prepare to defend against the evolving cybersecurity landscape", he says.
*To view the whole webinar, click here. To learn more and consider how an Identity Risk Review can make your organisation more secure, contact Secure Agility here.
