Authors:
Alexander Ivanyuk — Senior Director, Technology
Irina Artioli — Cyber Protection Evangelist, TRU Researcher
The Acronis Cyberthreats Update covers current cyberthreat activity and trends, as observed by the Acronis Threat Research Unit (TRU) and sensors. Figures presented here were gathered in May of this year and reflect threats that we detected as well as news stories from the public domain. This report represents a global outlook and is based on more than one million unique endpoints distributed around the world.
Incidents of the month
A massive data breach has exposed over 184 million login credentials, including user names and passwords associated with major platforms such as Google, Microsoft, Facebook, Instagram, Snapchat and others. The unprotected and unencrypted database, discovered by cybersecurity researcher Jeremiah Fowler, also contained sensitive information from banks, health care providers, and government portals. The data was likely obtained through infostealer malware, which extracts information from infected systems. The breach underscores the risks of storing sensitive information in email accounts and highlights the importance of regular password changes and the use of encrypted cloud storage for sharing sensitive files. The hosting provider has since taken the database offline, but the owner remains unidentified.
May malware detections
In May, Acronis Cyber Protect blocked over 800,000 malware threats on endpoints — a 36% increase from April.
The below tables show the percentage of Acronis clients that had at least one malware threat blocked at the endpoint, as well as the normalized percentage of clients with at least one malware detection. The higher the percentage, the higher the risk of a workload in that country being attacked by malware.
Protection
The aforementioned threats can be detected and mitigated with solutions from Acronis.
Acronis Cyber Protect Cloud protects against both known and never-before-seen threats through a multilayered protection approach. This includes behavior-based detection, AI- and ML-trained detections and anti-ransomware heuristics, which can detect and block encryption attempts and roll back any tampered files automatically without any user interaction.
Additional advanced email security and URL filtering can help you protect against social engineering threats. And your Acronis #CyberFit score helps you quickly identify systems that need attention, while the integrated patch management makes updating your software to the latest versions simple.
Acronis XDR for Acronis Cyber Protect Cloud brings the visibility needed to understand attacks while simplifying the context for administrators and enabling efficient remediation of any threats.
