Acronis Report Reveals 197% Rise in Email Cyberattacks

Acronis, a global cybersecurity and data protection firm, has released its biannual “Acronis Cyberthreats Report, H2 2024: The Rise of AI-Driven Threats,” revealing alarming trends in cyberattacks. The report indicates a 197% increase in email cyberattacks in the second half of 2024 compared to the same period in 2023, with a 21% rise in attacks per organization. From July to December 2024, nearly half (50%) of users were targeted by email-based attacks, with spam making up 31.4% of all emails. Shockingly, 1.4% of these emails contained malware or phishing links.

Managed service providers (MSPs) have become prime targets, with email phishing campaigns impacting 33% of MSPs in H2 2024. Phishing continues to be the primary attack vector, followed by vulnerabilities in Remote Desktop Protocol (RDP) and other remote access tools. This trend highlights cybercriminals exploiting common MSP practices to breach networks and deploy malicious payloads.

A troubling trend noted in the report is the rise of advanced persistent threat (APT)-linked ransomware groups targeting MSPs. These groups employ sophisticated espionage tactics, including stolen credentials, social engineering, and supply chain attacks, to infiltrate MSP networks and deploy ransomware on client systems. This shift signals that MSPs have evolved from opportunistic targets to strategic entry points for high-stakes cyberattacks.

In December 2024, the UAE was notably among the most targeted countries for malware attacks. The country also saw the highest percentage of blocked malicious URLs (16.2%), followed by Brazil (13.2%) and Singapore (12.0%).

Gerald Beuchelt, CISO at Acronis, commented on the report: “This biannual release from the Acronis Threat Research Unit highlights the alarming rise of AI-generated attacks and the sophistication of ransomware campaigns. By offering actionable insights, this report helps organizations, MSPs, and the cybersecurity industry strengthen their defenses against emerging threats.”

The report also points to the security risks associated with the growing adoption of remote monitoring and management (RMM) tools. While RMM tools enhance organizational efficiency, their widespread use has introduced blind spots that attackers can exploit. The lack of proper controls can transform RMM tools into entry points for ransomware, leading to severe damage.

In addition to an analysis of emerging threats in H2 2024, the report offers a comprehensive overview of the top vulnerabilities exploited in 2024 and provides predictions for 2025. It concludes with actionable recommendations for organizations and MSPs to fortify their defenses against these evolving cyber risks.