Curated by THEOUTPOST
On Thu, 27 Feb, 12:05 AM UTC
2 Sources
[1]
AI is helping hackers get access to systems quicker than ever before
ReliaQuest research says encryption of exfiltrated data is becoming less likely As well as boosting businesses across the world, the adoption of AI by security teams and hackers has also changed the cybercrime landscape, with new research from ReliaQuest claiming cybercriminals are now faster than ever at breaching systems, with the average time between initial access and lateral movement now just 48 minutes. Interestingly, the report found hackers are relying less and less on encryptions, with 80% of all breaches involving data exfiltration, but just 20% including encryption, and many attackers are, abandoning encryption altogether, focusing solely on data theft, "a faster, more profitable approach," the report confirms. This suggests companies are perhaps less inclined to pay ransoms, and hackers are finding more success in simply selling the stolen data, rather than making demands. This isn't perhaps entirely surprising, as fewer than half of ransomware incidents result in payment, and of those who pay the ransom, only around 7% actually ever fully recover their information - so there's not much incentive on either side. The research also shows phishing is once again the top initial access technique, and 30% of these attacks include credential harvesting. Social engineering attacks are evolving too, with 'voice phishing' now behind 14% of breaches - especially targeting the manufacturing sector, likely due to the 'frequent IT interactions and lenient help-desk policies' needed to handle the high volumes of support requests. But the findings also mean security teams are going to have to rethink their priorities in the coming months, and in 2025, companies will have to bolster their defenses to avoid any costly downtime. "The focus can no longer be solely on restoring encrypted systems -- strategies must also address protecting data privacy, managing reputational risks, and ensuring compliance with regulatory requirements," the report adds. "To prepare, CISOs must implement defenses to detect and prevent exfiltration attempts while developing playbooks that prioritize business continuity and resilience against these evolving ransomware tactics."
[2]
Hackers are using AI to breach systems faster than ever
AI is helping hackers breach systems faster than ever and in under an hour, according to new research from ReliaQuest. The report also indicates that hackers are shifting from ransomware to data theft, making attacks harder to detect and defend against. Phone-based and phishing scams are also rising, making businesses rethink their security strategies to protect sensitive information. The report found that hackers are moving away from ransomware and focusing on selling stolen data rather than demanding ransoms, as it is more profitable. 80% of breaches involve data theft, while only 20% include data encryption. This change implies companies are less likely to pay the ransom, as only around 7% recover their data. Phishing is currently the top way hackers steal data, with 30% of attacks including credentials theft. As attackers use AI, it only takes them four hours to steal the data and six hours to encrypt it. Recommended Videos Another rising threat is voice phishing, which now accounts for 14% of breaches and primarily targets the manufacturing sector. Recurring IT dealings and permissive help desk policies are possible causes for the rise in "voice phishing." But it's not all bad news. The report says that defenders have made progress this year. ReliaQuest says it's using AI and automation to tackle threats, making it possible for customers to achieve threat containment in only three minutes. As the attacks grow, it's paramount that organizations improve their defenses. The report outlines three steps organizations can take to stay safe: incorporating AI and automation into security operations, barricading common entry points, and eliminating blind spots. ReliaQuest says it aims to help organizations strengthen their security strategies and improve threat detection and response.
Share
Share
Copy Link
Recent research by ReliaQuest highlights how AI is transforming cybercrime, enabling hackers to breach systems faster and shift tactics from ransomware to data theft. The study also reveals emerging threats like voice phishing and emphasizes the need for enhanced cybersecurity measures.
Recent research by ReliaQuest has revealed a significant shift in the cybercrime landscape, largely driven by the adoption of artificial intelligence (AI) by hackers. The study found that cybercriminals are now able to breach systems faster than ever before, with the average time between initial access and lateral movement reduced to just 48 minutes 1.
The research indicates a notable change in hacker tactics, moving away from ransomware attacks towards direct data theft. According to the report, 80% of all breaches now involve data exfiltration, while only 20% include encryption 1. This shift suggests that hackers are finding it more profitable to sell stolen data rather than demand ransoms, as fewer than half of ransomware incidents result in payment, and only about 7% of those who pay ever fully recover their information 2.
The study highlights several evolving attack methods:
The findings underscore the need for businesses to reassess their cybersecurity priorities:
Despite the challenges, the report also notes progress in defensive capabilities. ReliaQuest claims that by leveraging AI and automation, they have enabled customers to achieve threat containment in as little as three minutes 2. This highlights the potential for AI to enhance cybersecurity measures as well as pose threats.
As the cybercrime landscape continues to evolve, organizations must remain vigilant and adaptive in their approach to security. The integration of AI in both offensive and defensive cybersecurity operations marks a new era in the ongoing battle against digital threats.
Reference
[2]
As AI transforms the cybersecurity landscape, businesses are increasingly adopting AI-powered defenses to combat sophisticated AI-driven threats, highlighting both the risks and opportunities in this technological arms race.
3 Sources
3 Sources
As AI revolutionizes cybersecurity, it presents both unprecedented threats and powerful defensive tools. This story explores the evolving landscape of AI-based attacks and the strategies businesses and cybersecurity professionals are adopting to counter them.
2 Sources
2 Sources
As AI technology advances, cybercriminals are leveraging it to create more sophisticated and personalized social engineering attacks, posing significant challenges for organizations, especially SMEs and supply chains.
3 Sources
3 Sources
As AI technology advances, cybercriminals are leveraging it to launch more sophisticated attacks on macOS, posing significant challenges for cybersecurity professionals and individual users alike.
2 Sources
2 Sources
Experian's 12th Annual Data Breach Industry Forecast highlights emerging cybersecurity risks, including AI-powered attacks, teen hackers, and insider threats, predicting significant challenges for businesses and consumers in 2025.
2 Sources
2 Sources
The Outpost is a comprehensive collection of curated artificial intelligence software tools that cater to the needs of small business owners, bloggers, artists, musicians, entrepreneurs, marketers, writers, and researchers.
© 2025 TheOutpost.AI All rights reserved