Top Cybersecurity Threats in H1: Malicious Links, AI Tools, and SMB Attacks in Mimecast Threat Intelligence Report

Top Cybersecurity Threats in H1

Top Cybersecurity Threats

Cybercriminals Shift Tactics

Cyber attackers are increasingly using malicious links instead of traditional malware to target victims. According to Mimecast’s analysis, the number of malicious links jumped by 133% in the first quarter of 2024 and 53% in the second quarter, compared to the same period in 2023.

These attacks often involve multiple layers of fake information, requiring victims to click through several links, respond to CAPTCHAs, and deal with fake multi-factor authentication requests. These extra layers of deception help these attacks go undetected, bypassing security measures that would block malware. For example, in early 2024, a campaign targeting Australian law firms used misleading URLs in emails to redirect users to a fake Microsoft login page, tricking them into giving up their credentials.

AI-Powered Scams Are Rising

Attackers are increasingly using AI to create more convincing phishing schemes. In one case, they sent 380,000 emails to corporate employees, with a PDF attachment that, when opened, directed them to a webpage hosted by an AI development service.

These AI-driven attacks don’t just target businesses; consumers are also at risk. Attackers use Microsoft distribution lists to send mass emails that pass security checks, notifying recipients of an upcoming charge and urging them to contact a fake AI bot call center. In May 2024, Mimecast detected more than 1.6 million emails in this type of campaign.

Small Businesses Are the Prime Target

Small businesses continue to face the highest volume of cyber threats, as noted in the Q4 2023 report. Mimecast observed that the number of threats per user (TPU) for small businesses peaked at 40 in Q1 2024. Employees at small and medium-sized businesses encounter more than twice as many threats compared to those at large enterprises.

Across all business sizes, the average number of TPUs dropped by about a third, from 19 TPUs in Q4 2023 to 14 TPUs in Q2 2024. While threats to large enterprises decreased in the first quarter, they saw a slight increase in the second quarter.

“Email and collaboration tools are often seen as mere cost centers, but this perspective misses their crucial role in cybersecurity,” says Mick Paisley, Chief Security & Resilience Officer at Mimecast. “By optimizing email security, organizations can save costs while ensuring strong protection against emerging threats. This is essential not only for reducing cyber risks but also for maintaining productivity and safety.”

About Mimecast

Mimecast is a leading AI-powered, API-enabled platform designed to protect organizations from a wide range of cyber threats. By combining advanced technology with human-focused solutions, Mimecast enhances visibility, provides strategic insights, and empowers businesses to protect their communication environments, safeguard critical data, and engage employees in reducing risks while boosting productivity. Over 42,000 businesses worldwide trust Mimecast to help them stay ahead of the ever-evolving cyber threat landscape. With Mimecast, customers get more—more visibility, more insights, more agility, and more security.

Mimecast and the Mimecast logo are trademarks of Mimecast Services Limited in the United States and/or other countries. All other third-party trademarks and logos mentioned in this press release belong to their respective owners.

👁 Post Views = 52k

Share this post :

Facebook
Twitter
LinkedIn
Pinterest