Cybercriminals increasingly using several channels, targeting personal identities in attacks
The survey on cybercrime trends 2025, an annual report postponed by the provider of training and awareness of security, also gave an overview of the growing trends in the growing trends in attacks and multichannel attacks targeting personal identities to attack companies. Among those questioned, 94% said that multichannel attacks against their organizations have increased in the past year. While 51% said that email was still the main target of phishing attempts. The so -called “3D phishing” attacks that integrate vocal phishing (Vishing), SMS phishing and phishing of the QR code also gain ground, receiving an additional boost through the generator’s capacities. convince employees to share personal details and transfer funds. Sosafe’s survey revealed that 83% of organizations were affected by these types of attacks. “The problem is in the process of essaying the boundaries between personal and professional life. With hybrid and remote work models, employees are relying more and more on devices and personal accounts, expanding the attack surface far beyond corporate firewalls, “said the report. Attacks can take advantage of the personal information shared on social networks or exhibited through large -scale threat companies until it is too late. The trend shows that the management of personal digital identities in addition to corporate accounts should be included in cybersecurity training, said Sosafe.
The dependencies of the supply chain, the inequality of cyber resilience and the changing cybercrime tactics also have risks
The recent main supply chain attacks such as the Ransomware attack on CDK globalwhich finally had an impact on more than 15,000 car dealerships in North America, demonstrates how dependence on third parties presents a risk for many organizations; Sosafe’s Trends Survey Found 93% of Companies Rely on Third-Party Services to Deliver Their Main Proposition.Both Third-Party and Fourth-Party Risk-Where the Impact of An Attacks on a Vendor’s CAN ALSO REACH REACH REACH ITS CUSTOMERS-CAN THREATEN AN Organization’s Security and Business Continuity, and Organizations Should fight these risks by Holding Thorough Third-Party inventories, Classifying Their Third-Party Dependencies by Risk Level, Enhancing Their Risk Assessments of potential business partners and diversifying their supply chain to reduce dependence on one supplier. Organizations should also consider isolating third -party systems from critical systems as much as possible to minimize and contain the impact of any third -party compromise. The defenses between large companies and small businesses, as well as the highly regulated and less regulated sectors, only aggravate the weaknesses of the supply chain and are likely that less resources and less resources critical infrastructure organizations are targeted by cybercriminals. The vast majority – 98% – respondents to the Sosafe survey said they thought the gap widen. Cybercriminals are increasingly organized, advanced and profitable, with global cybercrime costs planned to go from $ 9.22 billions of dollars in 2024 to 13.82 billions of dollars by 2028. “The fight against this increasing threat requires more than individual initiatives – it requires collective effort. The collaboration between organizations, industries and governments is essential to share information on threats, establish unified defense strategies and in -depth implementation differences that cybercriminals exploit, “concluded the report.