Advanced persistent threats rise by 74% in 2024 report

Today

According to the latest Kaspersky Managed Detection and Response (MDR) analyst report, Advanced Persistent Threats (APTs) have been detected in 25% of organizations, accounting for an alarming 43% of all high-severity security incidents. This marks a significant increase of 74% compared to the previous year, underscoring the growing sophistication and persistence of cyber threats targeting businesses across various sectors.

The annual Managed Detection and Response (MDR) analyst report provides in-depth insights derived from an extensive analysis of cybersecurity incidents handled by Kaspersky's Security Operations Center (SOC) team. This report examines key trends in attacker tactics, techniques, and procedures (TTPs), as well as the overall characteristics of security incidents. Additionally, it highlights the distribution of these threats across different industries and geographic regions, offering a comprehensive overview of the evolving cyber threat landscape.

One of the most concerning findings from the latest report is the continued rise in APT activities. These human-driven attacks have affected one in four companies, making up a substantial 43% of all critical security incidents detected in 2024. When compared to previous years, the surge is even more striking—APTs have increased by 74% from 2023 and by 43% from 2022. This trend highlights the fact that, despite advancements in automated detection technologies, cybercriminals are continuously adapting their methods to evade security measures and exploit system vulnerabilities.

Interestingly, the report found that APTs were detected across nearly every industry, with the notable exception of telecommunications. The most targeted sectors included information technology (IT) and government institutions, both of which have long been primary targets for cyber espionage and sophisticated attacks. These findings suggest that organizations operating in these critical industries must enhance their cybersecurity defenses and remain vigilant against evolving threats.

Beyond APTs, the report also sheds light on other prevalent cyber threats. Incidents classified as human-driven attacks that were confirmed by customers as cybersecurity exercises accounted for more than 17% of all recorded incidents. Additionally, severe violations of security policies comprised approximately 12% of high-severity events. Malware-related incidents also made up over 12% of all high-risk cases, with financial, industrial, and IT sectors being the most affected by these types of attacks.

Sergey Soldatov, Head of Security Operations Center at Kaspersky, emphasized the importance of proactive security measures, stating, "In 2024, we observed a significant escalation in Advanced Persistent Threats. This alarming trend underscores that even with advancements in automated detection, determined human-driven attacks continue to exploit vulnerabilities across various sectors. Organizations must enhance their preparedness and invest in comprehensive cybersecurity strategies to counteract these sophisticated threats."

For organizations struggling with cybersecurity expertise or resources, Kaspersky offers Managed Detection and Response (MDR) and Incident Response services. These solutions provide end-to-end incident management, from real-time threat identification to continuous protection and remediation. By leveraging expert support, businesses can fortify their cybersecurity posture and effectively defend against even the most elusive cyber threats.

Share on: