Major industries reported two critical security incidents every day in 2023

News
By published

Is any industry safe from hackers?

flubot
(Image credit: flubot)

Major industries, including finance, IT, industrial and government sectors, report over two critical security incidents with direct human involvement per day, new research from Kaspersky shows.

The Managed Detection and Response Analyst Report for 2023 details that more than one in five (22.9%) of high-severity incidents in 2023 were reported by the government sector, closely followed by the IT sector (15.4%).

The financial industry is less hard hit at just 14.9%, with industrial companies suffering just 11.8% of incidents.

 Human coordinated attacks most effective

Almost one quarter of critical security incidents during 2023 were perpetrated with direct human involvement, with the most popular living-off-the-land attacks utilising powershell.exe, rendll32.exe and msiexec.exe.

In terms of MITRE ATT&CK techniques, phishing, account manipulation and exploitation of remote services were the most popular techniques used by attackers. The mean time to report for high severity incidents ranked at 36.37 minutes, with medium and low severity incidents taking 32.55 and 48.01 minutes respectively.

Speaking on the results of the report, Sergey Soldatov, Head of Security Operations Center at Kaspersky said, “In 2023, Kaspersky detected a smaller number of high-severity incidents, but observed a simultaneous increase in the number of medium and low severity ones. This redistribution of occurrences is associated with the detection of malware without visible traces of active human participation in attacks, which can be explained by the “commoditization of tools”.”

“However, it’s important to understand that the low number of high-severity incidents does not necessarily indicate low damage. Targeted attacks are now planned more carefully, and become more dangerous. Therefore, we recommend the use of effective automated cybersecurity solutions managed with the help of experienced SOC analysts,” Soldatov said.

More from TechRadar Pro

Benedict Collins
Benedict Collins
Staff Writer (Security)

Benedict has been writing about security issues for over 7 years, first focusing on geopolitics and international relations while at the University of Buckingham. During this time he studied BA Politics with Journalism, for which he received a second-class honours (upper division), then continuing his studies at a postgraduate level, achieving a distinction in MA Security, Intelligence and Diplomacy. Upon joining TechRadar Pro as a Staff Writer, Benedict transitioned his focus towards cybersecurity, exploring state-sponsored threat actors, malware, social engineering, and national security. Benedict is also an expert on B2B security products, including firewalls, antivirus, endpoint security, and password management.

More about pro
A person holding a phone looking at a scam text with warning signs around

438 crypto masterminds are responsible for the majority of pump-and-dump crypto coin schemes globally, researchers find
Nanochip

After semiconductors, semimetals might be the next big thing as the tech industry looks for a replacement for ubiquitous copper
big data business ai

"The best AI comes from the best data” - why NetSuite thinks AI is changing everything, but its “secret sauce” could be just what your business needs
See more latest
Most Popular
Nikon Z5 II camera in person's hand
Nikon unveils the Z5 II full-frame mirrorless camera – entry-level just got better, and pricier
A Nintendo Switch 2 console on a Zelda background
The 'Switch 2 doesn't contain any Switch hardware,' Nintendo explains its new platform and what games will be compatible
A person holding a phone looking at a scam text with warning signs around
438 crypto masterminds are responsible for the majority of pump-and-dump crypto coin schemes globally, researchers find
Nintendo Switch 2 release date
We just got our first look at the eShop on the Nintendo Switch 2
Tinder's The Game Game
Tinder’s new ‘Game Game’ is like speed dating a vocal AI
Nanochip
After semiconductors, semimetals might be the next big thing as the tech industry looks for a replacement for ubiquitous copper
Switch 2 camera
The new Nintendo Switch 2 Camera proves I was right to hope for a new age of Nintendo peripherals – but what comes next?
MediaTek
After Nvidia, Mediatek may have convinced another huge tech company to use its expertise to develop AI chips
Nintendo Switch 2 Direct live coverage.
Best Buy could be the best place to secure a Nintendo Switch 2 at launch
GameCUbe Nintendo Classics titles inclduing Mario Sunshine and Pokemon: XD Gale of Darkness
Nintendo’s best Switch 2 announcement was its GameCube game rereleases, but buying the new GameCube controller will be a challenge