Summary: In 2024, compromised network edge devices were the initial compromise point in 30% of incidents impacting small and medium-sized businesses (SMBs), with VPN devices being particularly vulnerable. Moreover, there was a notable surge in remote ransomware attacks and evolving social engineering techniques, such as MS Teams vishing and MFA phishing. Attackers increasingly exploited legitimate tools and utilized generative AI to enhance the success of their attacks.
Affected: Small and Medium-Sized Businesses (SMBs)
Keypoints :
- 30% of intrusions in SMBs originated from compromised network edge devices, particularly VPN appliances.
- Remote ransomware attacks rose by 50% in 2024, using unmanaged devices to evade detection.
- Attackers adapted social engineering techniques, including MS Teams vishing and MFA phishing, while leveraging generative AI for malicious purposes.
Source: https://www.infosecurity-magazine.com/news/network-edge-devices-entry-smb/