Microsoft, one of the biggest players in cloud and online services. It offers not only the Azure platform, but also a wide range of mail services within Microsoft 365. Given that the company manages such a large volume of data, it can use regular analyzes to provide valuable insights into the current state of cyber security. The latest Microsoft Digital Defense Report 2024 brings shocking information about the threats facing Internet users today. Let’s look at some essential findings together.
Sectors most at risk
The report shows that cybercriminals most often target the IT sector, which accounts for 24% of all attacks . The focus on IT is not surprising, as its infrastructure is key to the operation of all areas, contains access points and secures sensitive information. Right behind IT is the area of education and research, which is exposed to 21% of attacks – attackers here are mainly attracted by sensitive data and the results of strategic research. The third place is occupied by the government sector with a share of 12% , it remains a traditional target due to national security and strategic information.
Top 10 target sectors ( source )
The number of threats is increasing
The report highlights a dramatic increase in cyber attacks over the past three years. The fastest growing type of attack is techscam , i.e. fraudulent e-mails masquerading as official turkey phone number data technical support communications. Between 2021 and 2023, the number of techscams increased by 400% . Microsoft also saw a 180% increase in malware over the same period, showing that cybercrime is evolving rapidly.
Daily amount of malicious traffic in
If you are looking for practical tips on how to protect yourself from online fraud, we recommend our article How to protect yourself from online fraud . There you will find an overview of useful steps that will help you to better secure your online activity.
Passwords under scrutiny
Passwords remain a prime target the manager’s goal is to prepare the ground for cybercriminals. 99% of attacks are trying to get credentials. Microsoft blocks around 7,000 such attacks per second every day . Therefore, multi-factor cg leads authentication (MFA) remains an effective method of protection, even though attackers are increasingly finding new methods to bypass MFA.
User identity attack statistics ( source )
The evolution of phishing
Phishing continues to be one of the most common forms of cyber attacks. The most common techniques include sending fraudulent links that redirect users to fake sites where credentials are stolen. Over the past year, the number of these attacks has increased by 58% .
Attackers are increasingly relying on new methods such as QR codes , which now account for around 25% of all phishing attacks . This method can bypass security checks for attachments and links, as an image with code easily passes filters. Attackers thus use QR codes to bypass detection systems
QR codes can also pose a risk in an offline environment, especially in places such as petrol stations, public vending machines or information boards. Attackers can easily paste a regular QR code (for example for payment) with a fake code that redirects the user to malicious pages, etc. This type of fraud is known as quishing .