Tag: cyberattacks

  • Cloud Ransomware Attacks Surge as Organizations Struggle with Security

    Cloud Ransomware Attacks Surge as Organizations Struggle with Security

    A recent report by Rubrik reveals alarming trends in cyberattacks, with a staggering 90% of IT and security leaders reporting that their organizations faced a cyberattack in the past year. The persistence of ransomware attacks and a growing reliance on hybrid cloud environments highlight the urgent need for enhanced security measures, as many firms are left vulnerable due to misconceptions regarding their cloud service providers’ responsibility for data protection.

    Joe Hladik, Head of Rubrik Zero Labs, noted that the continued exploitation of hybrid cloud vulnerabilities indicates that cybercriminals remain ahead of the game. The report emphasizes that organizations must adopt a proactive approach to safeguarding their most valuable data and prioritize a data-centric security strategy that emphasizes visibility and quick recovery mechanisms. “The need for a data-centric security strategy that prioritizes visibility, control, and quick recovery has never been more urgent,” Hladik stated.

    The report also pointed out that nearly one-fifth of organizations faced over 25 cyberattacks in 2024 alone, averaging at least one breach every other week. The most prevalent attack vectors included data breaches (30%), malware on devices (29%), cloud or SaaS breaches (28%), phishing (28%), and insider threats (28%). The consequences of these attacks were significant, with 40% of respondents experiencing increased security costs and 37% noting reputational damage and lost customer trust.

    Despite the inevitable shift towards cloud adoption, challenges such as understanding application dependencies and managing hybrid environments continue to hinder full implementation. Approximately 90% of IT and security leaders manage hybrid cloud setups, with half reporting that most of their workloads have transitioned to the cloud. However, a prevalent misconception persists: the belief that cloud providers will entirely safeguard their users’ data, which often leads to a false sense of security.

    The report underscores the crisis in data recovery strategies, as 86% of organizations that experienced successful ransomware attacks last year reported paying a ransom to recover their data. Alarmingly, 74% of these organizations indicated that threat actors compromised their backup and recovery systems. With the increasing use of multiple cloud platforms—92% of organizations are utilizing two to five—it is evident that weak points in identity and access management are being exploited, exacerbating the ransomware threat.

    Insider threats are also a growing concern, with 28% of IT leaders highlighting that compromised credentials often drive these incidents. Moreover, a significant portion of high-risk sensitive files contains valuable digital data such as API keys and usernames, which are particularly attractive targets for cybercriminals seeking to hijack identities and breach critical systems.

  • UK Cyberattacks on Retail Sector Highlight Security Vulnerabilities

    UK Cyberattacks on Retail Sector Highlight Security Vulnerabilities

    The United Kingdom’s National Cyber Security Centre (NCSC) has sounded the alarm over a series of cyberattacks affecting notable retail chains in the country, describing the situation as a “wake-up call” for businesses to bolster their cybersecurity measures. Following a string of incidents targeting major players in the retail sector, the NCSC has emphasized the importance of adequate defenses to protect against similar threats in the future.

    As part of its response to these increasing threats, the NCSC, which operates under the auspices of the GCHQ intelligence agency, is collaborating with impacted organizations to determine the full scale and nature of the attacks. Dr. Richard Horne, CEO of the NCSC, noted that the disruptions pose serious risks not just to the businesses involved, but also to their customers and the general public. He urged all organizations to adopt recommended precautions found on the NCSC website to enhance their resilience against cyber threats. (Source)

    Amid this turmoil, the UK House of Commons’ Business and Trade Committee has summoned executives from major retailers including Marks & Spencer and Co-op to discuss whether they have received adequate support from relevant governmental bodies, including the NCSC and the National Crime Agency.

    The recent escalation in cyber threats may present a clear and alarming picture of the current state of digital security within the retail sector. Reports indicate that luxury department store Harrods was targeted on May 1st, following incidents affecting Co-op and Marks & Spencer in the preceding weeks. Harrods has initiated precautionary measures including restricting access to certain websites while it assesses the situation.

    Co-op also disclosed a security incident that triggered shutdowns of some IT systems as a precautionary measure against hacking attempts. Meanwhile, Marks & Spencer confirmed that its systems were compromised in a ransomware attack attributed to the notorious group Scattered Spider, causing disruptions in online ordering and contactless payment systems. (Source) The repercussions of these incidents underscore the pressing need for heightened vigilance and readiness within the retail landscape.

  • Harrods Confirms Cyberattack as UK Retailers Face Rising Threats

    Harrods Confirms Cyberattack as UK Retailers Face Rising Threats

    Harrods, the renowned luxury retailer, has acknowledged an attempted cyberattack on its systems, becoming the third major UK retailer to report such an incident within a fortnight. The company issued a statement indicating that, similar to an earlier attack on Co-op, the breach may not have succeeded.

    In its communication to The Register, Harrods stated, “We recently experienced attempts to gain unauthorized access to some of our systems.” The firm assures its customers that all its stores, including those located in Knightsbridge, H beauty shops, and airport venues, remain operational despite the security concerns. Harrods refrained from commenting on specific safety measures taken, such as restricting internet access.

    The ongoing cyber challenges faced by Harrods follow similar incidents at M&S and Co-op, which have yet to determine if ransomware was involved in the breaches. Reports allege that Scattered Spider, a known affiliate of ransomware operations, could be linked to these attacks. Will Thomas, a threat intelligence expert and SANS instructor, has urged UK retailers to enhance their cybersecurity defenses.

    Richard Horne, CEO of the UK’s National Cyber Security Centre (NCSC), has publicly commented, stating that the wave of cyberattacks should serve as a wake-up call for all organizations. He emphasized the NCSC’s commitment to assisting affected retailers and stressed the urgency for businesses to adopt protective measures against such attacks.

    While links between the recent cyberattacks on these retailers remain unclear, experts are closely monitoring the situation. The NCSC continues to work with affected organizations to provide advice and support as the retail sector grapples with these escalating cyber threats.

  • Cyberattacks Surge 47% Globally in Q1 2025, Education Sector Most Affected

    Cyberattacks Surge 47% Globally in Q1 2025, Education Sector Most Affected

    In the first quarter of 2025, the global landscape of cyber threats has dramatically escalated, with businesses facing a staggering increase in both the volume and sophistication of attacks. According to Check Point Software’s Q1 2025 Cyber Threat Intelligence Report, organizations experienced an average of 1,925 cyberattacks per week, marking a 47% increase from the previous year.

    The education sector emerged as the prime target for cybercriminals, suffering from an alarming average of 4,484 attacks each week. This figure represents a 40% increase compared to the next most-targeted industry, highlighting the vulnerabilities faced by educational institutions in today’s digital environment. Other heavily impacted sectors included government, telecommunications, healthcare, and automotive, with notable numbers of 2,678 and 2,664 attacks per week respectively.

    Geographically, Africa stood out as the region with the highest number of cyber incidents, witnessing a 39% increase, resulting in an average of 3,286 weekly attacks. The Asia-Pacific (APAC) region closely followed with a 38% rise in attacks. Surprisingly, while Latin America experienced the highest percentage growth in attacks at 108%, it did not lead in overall volume. Europe and North America reported increases of 57% and 40%, respectively, underscoring a widespread threat landscape.

    Ransomware incidents have surged dramatically, with a staggering 126% increase compared to the same period last year, predominantly affecting North America which accounted for 62% of global ransomware cases. Various sectors were targeted, with Consumer Goods & Services facing the brunt of these attacks. The rise in cyber threats is reflective of the evolving tactics employed by cybercriminals, notably the prevalence of double-extortion methods impacting organizations across multiple sectors and regions.