Over 65% of financial companies were targeted in the attack.

More than 65% of financial companies have been targeted in ransomware attacks in 2024, the latest research found.

Those who follow IT news know that during 2024, there was so much news of organizations being attacked by ransom malware or Ransomware that they became the subject of research by some cybersecurity organizations, and the results revealed a number of amazing numbers.

According to a report by the website Cyber Security News, it discusses research from several cybersecurity institutions into attacks on financial organizations during the year 2024 (d. In 2024), according to a research team from Any.Run a cybersecurity solution developer, it was revealed that during that year, up to 65% of financial industry organizations fell victim to ransomware, the most among all industries combined. The cost of data recovery averaged US $2,730,000 ($87,022,845), a very high figure. The research team also found that attacks on financial organizations began as much as 90% of phishing employees, leading to ransomware addiction. The amount of attacks were collected from Any.Run's Sandbox analytics system. It is within as many as 15,000 financial organizations.

The research was complemented by a report called Blue Report, conducted by the research team of Priscus Security, another cybersecurity expert firm, which found that cyber attacks against financial organizations are about one-third of all attacks can evade traditional cyber defense systems. These organizations' cyberdefense systems, in general, work for about 62 to 69% against external aggression. In addition, this report revealed that credit card theft is up to 20% year-on-year, with a card number of over 14.5. Millions of numbers have been sold on the underground black market, where these trends have resulted in the disruption of the victim's corporate operations due to attacks or repairs, and have to be punished by corporate regulators and have to deteriorate customer confidence.

Back in the research section of the Any.Run Threat Intelligence team that confirmed the issue of the use of traditional security operations centers (SOCs) that have introduced many enterprise cybersecurity tools, such as Security Information and Event Management, SIEM, Endpoint Detection and Response, and Email Gateways, have not been as effective as they should be due to the fatigue of the security team. Alert Fatigue and Overly Slow Visibility, as well as having to confirm the accuracy of the detection manually at each point, make the average response time or Mean Time to Response (MTTR) so slow that the organization has increased costs and opened up loopholes for hackers to harm the organization more widely.

The Any.Run has solved this problem by improving the Sandbox analytics system in both Feed Update and Lookup for search assistance. By relying on the support of the community of over 600,000 cybersecurity experts, they have helped to update many of the Sandbox systems, including IOCs or Indicators of Compromise, IP Numbers, Domains, and URLs. This is a proactive security operation, replacing Active Security. These data will be updated to SIEM or SOAR. (Security Orchestration, Automation, and Response) via API and STIX / TAXII. After the experiment, it was found to detect up to 36% of invasive cyber threats and reduce False Security. It allows the organization to shut down cyber threats that focus on stealing financial data, such as Lumma Stealer malware, a malware type that steals data from the victim's machine, or Infostealer that focuses on stealing financial data specifically before it is malicious.

# Trending # Lemon 8 Howtoo # lemon 8 diary # Finance # freedomhack