Phone : +91 95 8290 7788 | Email : sales@itmonteur.net

Register & Request Quote | Submit Support Ticket

Home » Cyber Security News » Valid accounts showed significant increase as initial attack vector in 2024, ET CISO

Valid accounts showed significant increase as initial attack vector in 2024, ET CISO

Valid accounts showed significant increase as initial attack vector in 2024, ET CISO


Valid accounts are increasingly being leveraged as an initial attack vector in 2024, representing 31.4% of cases. Public-facing applications still hold the top position with 39.2% of cases. These findings were reported in the recent Kaspersky Incident Response analyst report.

The Kaspersky Incident Response analyst report provides insights into cyberattacks investigated by Kaspersky team in 2024, using data from organizations seeking help with incident response and highlights trends in security threats across various sectors and regions. The report aids organizations in enhancing their security measures and developing effective incident response strategies.

According to the report, in a concerning trend that has persisted for years, public-facing applications have once again emerged as the primary vector for cyber attacks, accounting for 39.2% of cases in 2024.

Valid accounts have solidified their position as the second most common attack vector, representing 31.4% of incidents and showing a significant increase compared to 2023. This surge indicates a growing number of companies being targeted by initial access brokers (IABs), who capitalize on compromised credentials sold on the darknet to facilitate further attacks. This trend is particularly alarming in the context of Ransomware-as-a-Service (RaaS), where IABs play a crucial role in streamlining cybercriminal operations. The data also revealed that victims in these cases were often compromised beforehand, leading to leaked credentials without immediate detection.

Trusted relationships have seen an uptick from the previous year, now accounting for 12.8% of attack vectors, while phishing remains a significant threat, utilized in nearly one out of every ten cases (9.8%).

“Cyber threats continue to evolve relentlessly, with attackers adapting their methods to exploit the most vulnerable points in companies’ defenses. This highlights the critical need for organizations to not only strengthen their immediate security measures but also to cultivate a proactive and adaptive incident response culture that can stay ahead of these emerging risks,” comments Konstantin Sapronov, Head of Global Emergency Response Team at Kaspersky.

To protect businesses from possible threats, Kaspersky experts recommend:

  • Implementing robust password policy and multifactor authentication processes.
  • Removing management ports from public access.
  • Establishing a zero-tolerance policy for patch management or compensation measures for public-facing applications.
  • Ensuring that employees maintain a high level of security.
  • Use services like Kaspersky Incident Response or Kaspersky Managed Detection and Response to identify and stop the attack on early stages, before cybercriminals can reach their final goals.

  • Published On Mar 18, 2025 at 09:36 AM IST

Join the community of 2M+ industry professionals

Subscribe to our newsletter to get latest insights & analysis.

Download ETCISO App

  • Get Realtime updates
  • Save your favourite articles


Scan to download App

Information Security - InfoSec - Cyber Security - Firewall Providers Company in India

Juniper Firewall
Cisco Firewall
Checkpoint Firewall
paloalto Firewall
Fortinet Firewall
Forcepoint Firewall

 

Sophos Firewall
WatchGuard Firewall
Barracuda Firewall
Sonicwall Firewall
GajShield Firewall
Seqrite Firewall

 

 

 

 

 

 

 

 

 

 

 

What is Firewall? A Firewall is a network security device that monitors and filters incoming and outgoing network traffic based on an organization's previously established security policies. At its most basic, a firewall is essentially the barrier that sits between a private internal network and the public Internet.

 

Secure your network at the gateway against threats such as intrusions, Viruses, Spyware, Worms, Trojans, Adware, Keyloggers, Malicious Mobile Code (MMC), and other dangerous applications for total protection in a convenient, affordable subscription-based service. Modern threats like web-based malware attacks, targeted attacks, application-layer attacks, and more have had a significantly negative effect on the threat landscape. In fact, more than 80% of all new malware and intrusion attempts are exploiting weaknesses in applications, as opposed to weaknesses in networking components and services. Stateful firewalls with simple packet filtering capabilities were efficient blocking unwanted applications as most applications met the port-protocol expectations. Administrators could promptly prevent an unsafe application from being accessed by users by blocking the associated ports and protocols.

 

Firewall Firm is an IT Monteur Firewall Company provides Managed Firewall Support, Firewall providers , Firewall Security Service Provider, Network Security Services, Firewall Solutions India , New Delhi - India's capital territory , Mumbai - Bombay , Kolkata - Calcutta , Chennai - Madras , Bangaluru - Bangalore , Bhubaneswar, Ahmedabad, Hyderabad, Pune, Surat, Jaipur, Firewall Service Providers in India

Sales Number : +91 95 8290 7788 | Support Number : +91 94 8585 7788
Sales Email : sales@itmonteur.net | Support Email : support@itmonteur.net

Register & Request Quote | Submit Support Ticket

Firewall Firm is a Managed Firewall Security Solution Provider Company in India | Digital Marketing by SEO Company India | Powered by IT Monteur