Cyber-attacks are increasing and mobile devices are being targeted, according to Orange Cyberdefense, Europe’s largest managed security services provider.
A new report by the company reveals that there has been a 13% increase in cyber-attacks on businesses over the past 12 months, with a rise in ransomware incidents and, for the first time, a wave of attacks against mobile devices.
The data shows that of the 94,806 cyberattack incidents flagged as being potential threats, 36% were legitimate security incidents – a 13% increase on the year before.
Some 38% of all confirmed security incidents were classified as malware, including ransomware – an increase of 18% on 2020.
The findings suggest that many organisations, particularly small and medium sized businesses, will require more effective risk management when it comes to dealing with the rising cyber threat.
Mobile operating systems are an increasingly popular target for cyber-attacks. Many of the attacks appear to be related to commercial companies contracted by law enforcement and intelligence agencies.
However, analysts believe that the programs used to launch the attacks will find their way into the criminal ecosystem, highlighting the WannaCry attack of 2017.
Another key finding is that malware, including ransomware, was the most common type of threat reported, with 38% of all confirmed security incidents classified as malware – an increase of 18% on 2020.
Large organisations see more than double the amount of confirmed malware incidents than medium-sized businesses, the report found.
Hugues Foulon, CEO of Orange Cyberdefense, said: “Attacks like Solorigate show that even trusted software from reliable vendors can turn into a trojan horse for cunning attackers. Technology alone cannot be the solution to this problem. As our data shows, we have seen a 13% increase in the number of incidents in just one year, and these incidents keep increasing year on year.”
“A large proportion of the tech-driven security alerts that our analysts deal with are just noise but this puts a tremendous strain on already stretched IT and security teams. Indeed, not all businesses have the means or resources to employ managed security services providers to help them sift through the ‘noise’ and find the actionable security ‘signals’. We thus believe that security technologies can, and must, do better.”