According to the recent Kaspersky Incident Response analyst report, long-lasting attacks, carried out by cybercriminals, that persist for more than a month accounted for 35.2% of the total attacks in 2024.
The latest Kaspersky Incident Response analyst report and key insights offer extensive analysis of cyberattacks that Kaspersky investigated in 2024.
It draws upon information from organizations that required assistance during security incidents and “identifies emerging trends in threats across different industries and regions.”
With the rise in financial crime and online threats, the detailed report serves as a resource for organizations “looking to improve their security operations and prepare for future incidents effectively.”
The recent report from Kaspersky indicates that the “average duration of long-lasting cyberattacks, measured in median days, is a staggering 253 days.”
In response to these incidents, the median duration of incident response efforts was found to be 50 hours, showcasing “the complexity and challenge in mitigating the impact of such attacks.”
The primary impacts of long-lasting cyberattacks were identified as data encryption and leakage, “posing significant risks to organizations.”
The initial vectors for these attacks predominantly “include exploits targeting public-facing applications, leveraging trusted relationships and utilizing valid accounts.”
Konstantin Sapronov, Head of Global Emergency Response Team at Kaspersky said:
“Understanding the evolving landscape of cyber threats is crucial for any organization striving to safeguard its assets and processes. Our findings reveal that the resilience of cybercriminals grows as technology advances, pushing organizations to not only respond but also to anticipate and adapt their security measures proactively.”
To strengthen your company’s protection against “sophisticated attacks, deploy robust cybersecurity solutions and hire qualified practitioners to manage them or adopt managed security services such as Managed Detection and Response and Incident Response.”
These security services encompass the “complete incident management cycle from threat identification to continuous protection and remediation.”
They aim to assist in safeguarding against evasive cyberattacks, “investigating incidents and offering expert support even if a company lacks security workers.”
As covered, Kaspersky is a global cybersecurity and digital privacy company founded in 1997.
With “over a billion” devices protected to date from emerging cyberthreats and targeted attacks, Kaspersky’s deep threat intelligence and security expertise is constantly “transforming into innovative solutions and services to protect businesses, critical infrastructure, governments and consumers around the globe.”
The company’s security portfolio reportedly includes “endpoint protection, specialized security products and services, as well as Cyber Immune solutions to fight sophisticated and evolving digital threats.”