Kaspersky: Telecommunications will be the main target for cyber attacks in 2024
Kaspersky: Telecommunications will be the main target for cyber attacks in 2024
Illustration - Kaspersky logo in front of Kaspersky Lab. ANTARA/Kaspersky Lab/am.
HOLIDAY NEWS - A report from Kaspersky reveals that telecommunications companies, mass media and construction development are the top targets for cyber attacks in the first half of 2024.
Quoted from a press release received on Saturday (3/8) in Jakarta, in the telecommunications sector, there were 284 cybersecurity incidents per 10,000 systems, according to Kaspersky Managed Detection and Response (MDR) statistics for January to June 2024.
Mass media companies experienced 180 attacks per 10,000 systems, while the construction, food, and industrial development sectors followed with 179, 122, and 121 incidents respectively.
"A successful attack, especially a sophisticated one, on a telecommunications company could expose millions of customers' data, including contact details, social security numbers and credit card information," said Head of Kaspersky Managed Detection and Response Sergey Soldatov.
Soldatov said it could also be a springboard for further attacks on clients through exploiting trusted relationships.
Mass media organizations, he said, are in turn becoming increasingly frequent targets during international conflicts, which are often characterized by information wars in which they play an important role.
Lastly, construction development companies have significant cash flow and are dependent on subcontractors, making them vulnerable to attacks via trusted partner infrastructure and spear phishing.
Telecommunications companies also faced the highest average number of critical incidents, with 32 attacks per 10,000 systems.
"A critical incident is a human-driven attack or malware threat that has a potential or actual significant impact on a company's infrastructure," Soldatov said.
The IT industry followed with an average of nearly 12 critical incidents, while the government sector experienced an average of eight critical incidents in the first half of 2024.
Globally, the number of cyber incidents has remained relatively stable, with a slight decline. Organizations are likely to strengthen their cybersecurity measures following a spike in attacks in 2021-2022. Advancements such as vulnerability assessments and penetration testing have improved overall security.
“The heightened threat landscape in 2021-2022 is leading to increased cybersecurity attention in companies and entities in various fields, resulting in higher levels of security as organizations learn from past experiences,” said Soldatov.
Kaspersky: Telekomunikasi jadi target utama serangan siber pada 2024
Ilustrasi - Logo Kaspersky di depan Lab Kaspersky. ANTARA/Kaspersky Lab/am.
HOLIDAY NEWS - Laporan dari Kaspersky mengungkapkan bahwa perusahaan telekomunikasi, media massa, dan pengembangan konstruksi menjadi target serangan siber teratas pada paruh pertama tahun 2024.
Dikutip dari rilis pers yang diterima pada Sabtu (3/8) di Jakarta, sektor telekomunikasi, terdapat 284 insiden keamanan siber per 10.000 sistem, menurut statistik Kaspersky Managed Detection and Response (MDR) untuk Januari hingga Juni 2024.
Perusahaan media massa mengalami 180 serangan per 10.000 sistem, sementara sektor pengembangan konstruksi, makanan, dan industri menyusul dengan masing-masing 179, 122, dan 121 insiden.
“Serangan yang berhasil, terutama yang bersifat canggih, pada perusahaan telekomunikasi dapat mengekspos jutaan data pelanggan, termasuk detail kontak, nomor jaminan sosial, dan informasi kartu kredit," kata Kepala Kaspersky Managed Detection and Response Sergey Soldatov.
Soldatov mengatakan hal tersebut juga dapat menjadi batu loncatan untuk serangan lebih lanjut terhadap klien melalui eksploitasi hubungan terpercaya.
Organisasi media massa, kata dia, pada gilirannya menjadi sasaran yang semakin sering ditargetkan selama konflik internasional, yang sering kali ditandai dengan perang informasi di mana mereka memainkan peran penting.
Terakhir, perusahaan pengembangan konstruksi memiliki arus kas yang signifikan dan bergantung pada subkontraktor, sehingga membuat mereka rentan terhadap serangan melalui infrastruktur mitra terpercaya dan spear phishing.
Perusahaan telekomunikasi juga menghadapi jumlah rata-rata insiden kritis tertinggi, dengan 32 serangan per 10.000 sistem.
"Insiden kritis adalah serangan yang digerakkan manusia atau ancaman malware yang memiliki dampak signifikan potensial atau aktual pada infrastruktur perusahaan," ucap Soldatov.
Industri TI menyusul dengan rata-rata hampir 12 insiden kritis, sementara sektor pemerintah mengalami rata-rata delapan insiden kritis pada paruh pertama tahun 2024.
Secara global, jumlah insiden dunia maya tetap relatif stabil, dengan sedikit penurunan. Organisasi cenderung memperkuat langkah-langkah keamanan siber mereka setelah lonjakan serangan pada tahun 2021-2022. Kemajuan seperti penilaian kerentanan dan uji penetrasi telah meningkatkan keamanan secara keseluruhan.
“Lanskap ancaman yang meningkat pada tahun 2021-2022 menyebabkan meningkatnya perhatian keamanan siber di perusahaan dan entitas di berbagai bidang, yang menghasilkan tingkat keamanan yang lebih tinggi karena organisasi belajar dari pengalaman masa lalu,” kata Soldatov.
