AI-powered social engineering not technical exploits now dominating 90% of cyber attacks

AI-powered social engineering not technical exploits now dominating 90% of cyber attacks
фото показано с : cryptoslate.com

2024-5-14 13:20

A newly published cyber threat report from Avast has revealed substantial dominance of social engineering in cyber threats during the first quarter of 2024. Per the report, nearly 90% of cyberattacks on mobile and 87% on desktop devices involved scams, phishing, and malvertising, exploiting human vulnerabilities more than technical weaknesses.

A significant rise in scams using sophisticated technologies like deepfake videos and AI-manipulated audio was noted. These scams often utilize hijacked YouTube channels and other social media platforms to spread fraudulent content. The report highlighted that such deceptive practices are becoming more complex, with cybercriminals leveraging high-profile events and figures to enhance the credibility of their scams.

YouTube, in particular, has emerged as a critical vector for these threats. Avast’s telemetry indicated that in the previous year, four million unique users were protected against YouTube-based threats, with around 500,000 users shielded in the first quarter alone. Cybercriminals are increasingly exploiting YouTube’s automated advertising and user-generated content features to sidestep traditional security measures, deploying a variety of attack vectors from phishing campaigns to malware distribution.

The report outlined several prevalent scam tactics on YouTube:

Phishing campaigns specifically target creators with fraudulent collaboration offers, leading to malware dissemination and account compromises. Attackers post videos with descriptions containing malicious links, disguising them as legitimate downloads for popular software. Channel hijacking, where attackers gain control of YouTube accounts to push various scams, including crypto schemes that often start with fake giveaways. Attackers exploit reputable software brands and create domains that mimic legitimate companies to distribute malware disguised as genuine software.

Beyond individual platforms, the broader trend of Malware-as-a-Service (MaaS) was identified as a growing sector within cybercrime. Criminals rent out malware, facilitating a commission-based partnership where even less experienced hackers can launch attacks. This model simplifies the process of executing cyberattacks, making advanced tools accessible to a broader range of criminals.

Malware types such as DarkGate and Lumma Stealer were specifically mentioned for their propagation methods, including spreading via platforms like Microsoft Teams and YouTube. These methods underscore the continual evolution of cybercriminal strategies, emphasizing the role of social engineering.

Jakub Kroustek, Malware Research Director at Gen, remarked on the severity of the situation,

“In the first quarter of 2024, we reported the highest ever cyber risk ratio – meaning the highest probability of any individual being the target of a cyberattack.”

He added that human vulnerabilities are a significant focus for cybercriminals, who exploit emotional responses and curiosity to gain access to personal information and financial assets.

As technically focused exploits and hacks in crypto have fallen over the past year, Avast’s report showcases how non-technical attacks have risen. Human vulnerabilities are often the hardest aspects of op-sec and AI appears to already have made sufficient progress to offer a considerable challenge for security experts.

The post AI-powered social engineering not technical exploits now dominating 90% of cyber attacks appeared first on CryptoSlate.

Similar to Notcoin - Blum - Airdrops In 2024

origin »

Cyber Movie Chain (CMCT) на Currencies.ru

$ 0 (+0.00%)
Объем 24H $0
Изменеия 24h: 0.00 %, 7d: 0.00 %
Cегодня L: $0 - H: $0
Капитализация $0 Rank 99999
Цена в час новости $ 1.4E-6 (-100%)

cyber report technical engineering social desktop per

cyber report → Результатов: 92


Фото:

Law Enforcement Crack Down Drives Cyber Criminals Towards Less-Conspicuous Attacks: Report

According to the 2022 SonicWall’s Cyber Threat Report, global cryptojacking volume rose to 66.7 million attacks in 2022, up 30% over the first half of 2021. Cryptojacking refers to a cybercrime where the attacker gains access to the victim’s computer or mobile device’s computing power and uses this for cryptocurrency mining without the knowledge and […]

2022-7-30 23:30


Отчет: число атак с использованием программ-вымогателей снизилось на 23%

На фоне падения цены биткоина существенно сократилось число атак с использованием программ-вымогателей, отметили эксперты американской компании SonicWall. The latest #cyber threat data is now available in the newly released mid-year update to the 2022 SonicWall Cyber Threat Report.

2022-7-26 17:07


Фото:

Notorious Hacker Group Lazarus Is Targeting The Cryptocurrency Industry Via LinkedIn – Warns Security Firm

Blockchain and cryptocurrency professionals on LinkedIn are under a new phishing threat that’s targeting them disguised as crypto-related job offers advertised on the platform. A new report by Finland-based Cyber Security Firm F-secure has linked the attack to one of the most infamous and allegedly State-backed North Korean hacking group, Lazarus, which targets organizations globally […]

2020-8-26 15:56


Фото:

Russian cyber spooks piggyback Iranian hackers to spy on 35 countries

Cybercriminals with ties to the Russian government have been found to piggyback on hacking tools developed by Iranian threat groups to mount their own attacks against 35 countries. The findings — based on a joint report by the US National Security Agency and the UK’s National Cyber Security Centre (NCSC) — reveal the focus of the activity was largely in the Middle East, where the targeting interests of both Advanced Persistent Threats (APTs) overlap.

2019-10-22 10:07


Verizon Security Research: Over 20% Of Data Breaches Thought to Be Carried Out By Nation State Actors

Verizon’s 2019 Data Breach Investigations Report (DBIR), released Wednesday, which analyzed more than 41,000 cybersecurity incidents and over 2,000 data breaches from 86 countries. It found that cyber attacks by nation states and parties affiliated with them represented 23% of data breaches, up from 12% in 2018 and 19% in 2017, Corporate spying is on […]

2019-5-9 19:16


Cryptopia Launches Read-Only Website After Delay With Pre-Hack Balances

Cryptopia Launches Read-Only Website After Delay With Pre-Hack Balances Cryptopia has seen a rough couple of months. After a massive hacking in January, the exchange was forced to report the cyber criminals to local police and were even prevented from going into their office while the investigation continued. From the original hacking attempt to today, […]

2019-3-6 02:36


Фото:

200 million Chinese resumes leak in huge database breach

Last night, HackenProof published a report stating that a database containing resumes of over 200 million job seekers in China was exposed last month. The leaked info included not just the name and working experience of people, but also their mobile phone number, email, marriage status, children, politics, height, weight, driver license, and literacy level as well.

2019-1-11 16:42


Encrybit ICO

- ENCRYBIT THE RESEARCH BASED CRYPTOCURRENCY EXCHANGE Encrybit made history moments creating massive surveys in cryptocurrency market with 12k+ responses from traders among 167 countries. Encrybit exchange is thought of traders where we are merging their demands in reality developing the secured and featured enriched trading platform that does not want to compromise the emotions of traders.

2018-11-14 19:41


Фото:

New Exchange Security Scoring Model Offers Insurance Rates for Coin Holders

International cybersecurity solutions provider Group-IB has come up with a scoring model to grade crypto exchanges based on their level of security. The scoring model was created by Group-IB in conjunction with Swiss-based Cryptolns (which is operated by Swiss insurance broker APIS AS), and the grading is intrinsic to CryptoIns’ new cryptocurrency exchange insurance, which will allow exchange users to cover up to 15 BTC worth of digital assets held in their exchange accounts.

2018-11-13 00:43