Comcast Business as we speak launched its 2024 Cybersecurity Threat Report, a beneficial useful resource for IT and safety professionals, based mostly on the evaluation of 29 billion cybersecurity occasions detected by Comcast Enterprise throughout its safety prospects in 2023. The report highlights vital modifications within the cybersecurity panorama, pushed by subtle menace actors, an increasing assault floor, and the transformative energy of AI.
“Armed with a newfound arsenal of AI-based capabilities and a panorama affected by weak programs, cybercriminals are having a second,” mentioned Noopur Davis, Chief Data Safety and Product Privateness Officer, Comcast Company. “Our findings affirm that regardless of these developments, a multi-layered strategy combining superior safety, detection, managed companies, and vigilant upkeep of safety practices may help enterprises shield their digital belongings and improve their resilience towards subtle threats.”
This report presents a complete overview of the quickly evolving world cyber menace panorama, based mostly on cybersecurity occasions detected by Comcast Enterprise throughout its safety prospects in 2023. The report highlights an intensifying world menace panorama, together with the next:
- AI amplifies cyber dangers however presents highly effective instruments to mitigate threats.
- For each dangerous actors looking for to steal company information and IT safety professionals tasked with defending it, AI is altering the foundations of engagement. Defenders are more and more using AI and machine studying to investigate malware and log information at scale, in addition to to scan total programs for anomalies and routinely reply to threats. AI can act as a drive multiplier for defensive groups working to safeguard their organizations and information.
- Phishing assaults are on the rise, threatening companies worldwide.
- Phishing stays the first methodology utilized by attackers to realize preliminary entry to networks, with over 2.6 billion interactions detected by Comcast Enterprise. Moreover, over 90% of the phishing interactions Comcast Enterprise blocked had been designed to direct victims to phishing websites internet hosting malware. The pattern underscores the necessity for sturdy anti-phishing applied sciences, person schooling, and electronic mail gateway platforms to fight this rising menace.
- Unhealthy actors are using superior lateral motion methods to navigate networks.
- Distant companies had been probably the most exploited methodology for lateral motion, with over 409 million occasions detected by Comcast Enterprise. Using instruments like Endpoint Detection and Response (EDR) and Managed Detection and Response (MDR) may help IT employees determine early-stage threats by monitoring community exercise for anomalies in person conduct. They assist shield units linked to enterprise networks by utilizing AI to proactively detect, examine, take away, and remediate malware, phishing, and ransomware.
- Attackers are more and more utilizing encrypted channels and proxies to cover their command and management (C&C) communications.
- By exploiting these protocols, attackers can masks their malicious actions and evade detection. Area Identify System (DNS) tunneling stays a preferred approach to bypass conventional safety measures, with over eight million noticed occasions. Equally, Transmission Management Protocol (TCP) was utilized in 104,000 occasions to offer dependable communication channels, usually with encrypted payloads that additional obscure malicious actions. The use of Home windows Distant Administration (WinRM), which noticed almost 78 million occasions, was additionally prevalent. These strategies underscore the necessity for stylish detection instruments to determine and mitigate covert malicious actions.
- Distributed Denial of Service (DDoS) assaults and ransomware pose vital dangers.
- Comcast Enterprise recognized and blocked over one billion makes an attempt to destroy information. Moreover, there have been greater than 126 million blocked situations of malware or botnets designed particularly for monetary theft, underscoring the monetary motivations behind many cyber-attacks. DDoS assaults remained a significant menace to Comcast Enterprise prospects, with 103,000 reported occasions. This surge emphasizes the necessity for sturdy DDoS safety and mitigation methods.
The report gives CISOs, CIOs, and safety leaders with a deep dive into how cyber threats can breach and then unfold throughout world networks. This evaluation permits them to make knowledgeable safety choices for shielding vital belongings. The report’s traits and findings underscore the significance of adopting a multi-layered strategy to cybersecurity to bolster defenses towards evolving world threats.
To study extra about Comcast Enterprise’s superior cybersecurity options or to entry the complete 2024 Comcast Enterprise Cybersecurity Risk Report, please go to: https://business.comcast.com/enterprise/products-services/cybersecurity-services.