Acronis H2 2024 Cyberthreats Report Unveils Rise in Ransomware, AI-Driven Attacks, and Malware Risks

SCHAFFHAUSEN, Switzerland, Feb. 12, 2025 (GLOBE NEWSWIRE) -- Acronis, a global leader in cybersecurity and data protection, released its biannual report titled, “Acronis Cyberthreats Report, H2 2024: The rise of AI-driven threats”. Authored by the Acronis Threat Research Unit (TRU), the report offers a comprehensive account of the global threat landscape as monitored by Acronis during the second half of 2024. The latest Acronis Cyberthreats Report reveals a significant rise in email cyberattacks, a staggering 197% increase detected in H2 2024 compared to the same period in 2023, with a 21% rise in attacks per organization. From July to December 2024, nearly 50% of users were targeted by email-based attacks at least once.

Email attacks on managed service providers (MSPs) also increased. Not surprisingly, phishing was the preferred attack vector for attackers to breach MSP networks, with 33% experiencing email phishing campaigns. This was closely followed by exploits targeting vulnerabilities in Remote Desktop Protocol (RDP) and other remote access tools. This demonstrates how cybercriminals are leveraging common MSP practices to gain unauthorized access and deploy malicious payloads.

The report highlights a concerning emerging trend: MSPs are increasingly targeted by advanced persistent threat (APT)-linked ransomware groups, posing a significant and growing risk. These sophisticated actors employ espionage-style tactics, including stolen credentials, social engineering, and supply chain attacks, to infiltrate MSP networks and spread ransomware to client systems. This shift signals that MSPs are no longer opportunistic targets but have become strategic entry points for high-stakes cyberattacks.

Other key findings include:

  • Acronis blocked over 48 million malicious URLs at endpoints in Q4 2024—a 7% increase from Q3 2024.
  • 31.4% of all emails received in H2 2024 were spam, with 1.4% containing malware or phishing links.
  • 1,712 ransomware cases were reported in Q4 2024, with notable activity from RansomHub, Akira, Play, and KillSec, accounting for 580 victims. The Cl0p ransomware group emerged as a key threat in December, with 68 reported victims.

Regional insights:

  • The United Arab Emirates, Singapore, and Italy were the most targeted countries for malware attacks in December 2024.
  • The UAE reported the highest percentage of blocked malicious URLs in December (16.2%), followed by Brazil (13.2%) and Singapore (12.0%).



“The cyberthreats report from the Acronis Threat Research Unit serves as our biannual pulse on the cybersecurity landscape, offering critical insights into the latest attack trends and vulnerabilities,” said Gerald Beuchelt, CISO at Acronis. “This release highlights the alarming rise of AI-generated attacks and the increasing sophistication of ransomware campaigns. By analyzing trends from the first half of 2024 and providing actionable recommendations, the report empowers organizations, MSPs, and the cybersecurity industry to proactively strengthen their defenses to stay ahead of today’s most pressing risks.”

The report highlights another interesting trend: as remote monitoring and management (RMM) tools become more widely adopted for efficiency, they introduce significant risks to organizational security. Telemetry data from the report reveals that many organizations use multiple RMM tools simultaneously, creating blind spots that attackers can exploit. Without the proper controls, RMM tools can become entry points for ransomware attacks, which cybercriminals often use to cause even greater damage.

In addition to new data and analysis from the first half of 2024, the report provides a complete overview of the top vulnerabilities exploited in 2024 and predictions for 2025, alongside actionable recommendations to help organizations and MSPs strengthen their defenses against emerging threats.

For more information, download a copy of the full Acronis H2 2024 Cyberthreats Report here: https://www.acronis.com/en-us/resource-center/resource/acronis-cyberthreats-report-h2-2024

To learn more about the report and its findings, visit the Acronis blog here: https://www.acronis.com/en-us/blog/posts/acronis-cyberthreats-h2-2024-report-ransomware-and-ai-are-a-dangerous-combination/

About Acronis
Acronis is a global cyber protection company that provides natively integrated cybersecurity, data protection, and endpoint management for managed service providers (MSPs), small and medium businesses (SMBs), and enterprise IT departments. Acronis solutions are highly efficient and designed to identify, prevent, detect, respond, remediate, and recover from modern cyberthreats with minimal downtime, ensuring data integrity and business continuity. Acronis offers the most comprehensive security solution on the market for MSPs with its unique ability to meet the needs of diverse and distributed IT environments.

A Swiss company founded in Singapore in 2003, Acronis has 15 offices worldwide and employees in 50+ countries. Acronis Cyber Protect is available in 26 languages in 150 countries and is used by over 20,000 service providers to protect over 750,000 businesses. Learn more at www.acronis.com.

Acronis Press Contact
Julia Carfagno
Global Communications Manager
Julia.Carfagno@acronis.com

A photo accompanying this announcement is available at https://www.globenewswire.com/NewsRoom/AttachmentNg/f89bfcba-c418-4d39-99b0-3ae89b24c1c2


Acronis H2 2024 Cyberthreats Report Unveils Rise in Ransomware, AI-Driven Attacks, and Malware Risks


THỦ THUẬT HAY

Hướng dẫn cách tắt tự động đồng bộ hóa iPhone/iPad với iTunes

Nếu người dùng thường kết nối iPhone/iPad với máy tính chỉ để sạc pin thì việc tắt chế độ tự động đồng bộ là điều nên làm

Hướng dẫn tìm địa chỉ IP đơn giản và nhanh chóng

Địa chỉ IP là cách để cung cấp thông tin về nơi bạn cần truy cập trong mạng. Mọi thiết bị trong mạng đều có địa chỉ IP 'riêng' trong mạng đó, còn toàn bộ mạng lại có IP 'công cộng' trên mạng Internet. Mặc dù địa chỉ IP

4 bước nén ảnh giữ nguyên chất lượng bằng công cụ của Google

Bạn đang tìm kiếm một công cụ nén ảnh chất lượng nhưng chưa biết tìm kiếm ở đâu thì hãy xem qua bài viết sau đây.

Hướng dẫn vào Safe Mode trên Mac OS

Hãy cùng điểm qua một số thói quen xấu không ít những người chụp ảnh gặp phải để nhìn nhận và rút kinh nghiệm cho bản thân nhé.

Hướng dẫn tải video từ Google Drive khi bị khóa chức năng Download

Bạn đã từng nhận được một video được bạn bè chia sẻ từ Google Drive mà lại không được tải xuống? Google Drive có tính năng chặn download. Tuy nhiên, TCN sẽ hướng dẫn các bạn một mẹo nhỏ để tải video từ Google Drive khi

ĐÁNH GIÁ NHANH

Đánh giá ưu nhược điểm của Subaru Forester 2019 thế hệ mới

Đánh giá Subaru Forester 2019 thế hệ mới vừa ra mắt: Dù là một mẫu xe hoàn toàn mới nhưng Subaru Forester 2019 không có nhiều thay đổi mang tính đột phá trong thiết kế, tuy nhiên các tính năng an toàn được hãng xe Nhật

Đánh giá Lenovo Yoga 530: Mỏng nhẹ, gập xoay đa năng và pin rất trâu

Với thiết kế mỏng nhẹ, cấu hình khá và được trang bị sẵn ổ SSD, Lenovo Yoga 530 đã cho chúng ta thêm một lựa chọn thú vị nữa khi mua laptop gập xoay. Chúng ta hãy cùng tìm hiểu kỹ hơn về chiếc laptop này trong bài viết