More than half of the incidents, according to a study

[tanjimajuha20]

Chairman of the ROCIT Commission on Cloud Technologies, Hosting and Information Security, Director of EdgeCenter LLC Mikhail Shurygin drew attention to the regulation of hosting providers: "Anyone who does not ensure the proper level of control and compliance with information security measures should not work in this market." According to him, attackers actively use both unscrupulous Russian and international platforms to carry out attacks, including phishing, and increased regulation of hosting providers will increase the speed of response to various incidents.

by Positive Technologies, canada whatsapp number database devoted to the analysis of phishing attacks on organizations, were aimed at a specific organization, industry or country. Most often, government agencies (44%) and defense enterprises (19%) were the focus of attackers. Organizations in the field of science and education (14%) round out the top three main victims of phishing attacks.

Most often, attackers impersonate contractors. "The attackers send fake reconciliation reports, invoices, documents for contract extensions, and other data related to interactions with contractors," says Ekaterina Kosolapova, an analyst at the Positive Technologies Information Security Analytics Research Group. "The popularity of this trick is explained by the fact that it is applicable to almost all organizations and requires the presence of links or attachments in the message. In 58% of attacks, such baits were not linked to a specific industry. At the same time, this topic is used more often than others in targeted attacks on medical, financial, industrial, and telecommunications organizations."

Read also
Positive Technologies: Government Agencies and the Defense Industry Are Favorite Phishing Targets
Positive Technologies experts analyzed phishing attacks on organizations in 2022–2023 and presented the study at the Ural Forum "Cybersecurity in Finance". Most often, in phishing messages, attackers pose as contractors. The phishing as a service business model has become common practice. Experts predict an increase in the role of artificial intelligence in phishing attacks and counteraction to them.

According to statistics collected by Kaspersky Lab for 2023, the number of malicious mailings has increased by 2.5 times, and phishing resources - by five times. "We do not see any prerequisites for the volume of phishing and scams to decrease in the near future. On the contrary, attackers continue to develop tactics and develop multi-stage schemes for luring data - for example, referring to the victim's field of activity. Such attacks are significantly more complicated in cases where they begin with a message in a messenger allegedly from an acquaintance or employee of the same field or are accompanied by fake voice messages," - this is the forecast for 2024 given by Sergey Golovanov, chief expert of Kaspersky Lab.