SecurityWorldMarket

18/08/2024

Telecoms are prime targets for cyber attacks

Ingolstadt, Germany

Telecom, mass media, and construction development companies are the top cyber attack targets in the first half of 2024, according to Kaspersky. Telecoms faced the greatest number of incidents, likely due to attackers’ interest in sensitive data and trusted relationships exploitation. In turn, mass media are traditionally targeted during international conflicts, while construction development firms may be also attractive for threat actors due to their extensive subcontractor use.

In the telecommunications sector, there were 284 cyber security incidents per 10,000 systems, according to Kaspersky Managed Detection and Response (MDR) statistics for January-June 2024. Mass media companies experienced 180 attacks per 10,000 systems, while the construction development, food and industrial sectors followed with 179, 122 and 121 incidents, respectively.

“A successful attack, especially an advanced one, on a telecom company can expose millions of customers’ records, including contact details, social security numbers, and credit card information. It can also serve as a possible springboard for further attacks on clients through trusted relationship exploitation. That’s why this sector is so attractive for cyber criminals. The mass media organisations, in turn, become an increasingly frequent target during international conflicts, which are often characterised by information warfare in which they play a crucial role. Last but not least, the construction development firms have significant cash flows and rely on subcontractors, making them vulnerable to attacks via trusted partners’ infrastructures and spear phishing,” explained Sergey Soldatov, head of Kaspersky Managed Detection and Response.

Telecommunication companies also faced the highest average number of critical incidents, with 32 attacks per 10,000 systems. “Critical incidents are human-driven attacks or malware threats that have a potential or actual significant impact on the company’s infrastructure,” explained Sergey Soldatov. The IT industry follows with nearly 12 average critical incidents, while government sector experienced eight average critical incidents in the first half of 2024.

Globally, the number of cyber incidents has remained relatively stable, with a slight decrease. Organisations tend to strengthen their cyber security measures after the spike in attacks in 2021-2022. Enhanced approaches such as vulnerability assessments and penetration tests have improved overall security. “Cyber attacks typically mirror global conflicts, especially human-driven ones. The heightened threat landscape of 2021-2022 led to increased cyber security attention in enterprises and entities across various spheres, resulting in higher security levels as organizations learned from past experiences.”


Tags


Product Suppliers
Back to top