Sony Pixel Power calrec Sony

IBM Report: Cybercriminals Intensify Attacks on User Identities in the UK, Complicating Recovery Efforts for Enterprises

21/02/2024

LONDON, UK, Feb 21, 2024 IBM today released the 2024 X-Force Threat Intelligence Index highlighting an emerging global crisis as cybercriminals double down on exploiting user identities to compromise enterprises.

According to IBM X-Force, IBM Consulting's security services arm, cybercriminals last year generated more opportunities to log in to corporate networks through valid accounts, instead of hacking into them making this tactic a preferred weapon of choice for threat actors.

The X-Force Threat Intelligence Index is based on insights and observations from monitoring over 150 billion security events per day in more than 130 countries. In addition, data is gathered and analysed from multiple sources within IBM, including IBM X-Force Threat Intelligence, Incident Response, X-Force Red, IBM Managed Security Services, and data provided from Red Hat Insights and Intezer , which contributed to the 2024 report.

An emerging identity crisis

The report data revealed that exploiting valid accounts has become the path of least resistance for cybercriminals, with billions of compromised credentials accessible on the Dark Web.

According to the report, 50% of cyberattacks in the UK involved the exploitation of valid accounts as the initial access vector' and a further 25% of cases involved the exploitation of public-facing applications. Across Europe, X-Force observed a 66% year-on-year rise in attacks caused by the use of valid accounts contributing to Europe's prevalence as the most targeted region of 2023 and the record number of attacks that X-Force has ever reported regionally.

The criminal ecosystem was also quick to adapt to the use of valid accounts by attackers. In 2023, X-Force observed a 266% increase in infostealing malware, which is designed to steal personal and enterprise credentials, personally identifiable information, and banking and crypto wallet information.

This easy entry for attackers is harder to detect, eliciting a costly response from enterprises. According to X-Force, worldwide, major incidents caused by attackers using valid accounts were linked to nearly 200% more complex response measures by security teams than the average incident with defenders needing to distinguish between legitimate and malicious user activity on the network.

In fact, IBM's 2023 Cost of a Data Breach Report found that breaches caused by stolen or compromised credentials required roughly 11 months from detection to recovery the longest response lifecycle among all infection vectors.

Martin Borrett, Technical Director, IBM Security, UK, and Ireland (UKI) commented:

Our findings reveal that identity is increasingly being weaponised against enterprises, exploiting valid accounts and compromising credentials. It also shows us that the biggest security concern for enterprises stems not from novel or cryptic threats, but from well-known and existing ones.

Addressing cybersecurity challenges requires a strategic approach, emphasising the reinforcement of foundational security measures. Streamlining identity management through a unified Identity and Access Management (IAM) provider and strengthening legacy applications with modern security protocols are crucial steps in mitigating risks. Additionally, subjecting your system to rigorous stress tests by skilled offensive security teams proves invaluable in uncovering potential weaknesses. This insight is pivotal for crafting a robust incident response plan that engages all teams, from IT professionals to C-suite executives.

Julian David, CEO of techUK, added:

In an era marked by the growing sophistication of cybercriminals who exploit legitimate accounts to breach business defences, IBM's X-Force Threat Intelligence Index serves as a stark wake-up call.

The report underscores a troubling pattern where half of the cyberattacks in the UK rely on legitimate accounts for initial access, presenting significant challenges to businesses' recovery endeavours. To effectively combat this threat, businesses must adopt a strategic approach, integrating modern security protocols to mitigate risks and strengthen their defences against the ever-evolving landscape of cyber threats.

Further key UK findings include:

Malware made up 30% of security incidents observed in the UK.

Ransomware (30%) and cryptominers (20%) were the top malware types encountered in the country.

The impact of attacks was evenly distributed with extortion, digital currency mining and data leaks each making up 25% of total impacts in the UK.

This marks a shift from 2022, when half the cases X-Force observed in the UK involved extortion (57%) twice the global average followed by data theft (29%).

The professional, business and consumer services industry was the most targeted sector in the UK, representing 39% of cases.

Energy (30%) and finance & insurance (17%) were the second and third most targeted industries in UK, respectively.

Manufacturing was the most targeted industry in Europe, accounting for 28% of cases.

Europe overall experienced the highest percentage of incidents within the energy sector at 43%, as well as finance and insurance at 37%.

Major takeaways from the global report included:

Attacks on critical infrastructure reveal industry faux pas.

Worldwide, an alarming 69.6% of attacks that X-Force responded to were against critical infrastructure organisations, an alarming finding highlighting that cybercriminals are wagering on these high value targets' need for uptime to advance their objectives.

In 84% of attacks on critical sectors globally, compromise could have been mitigated with patching, multi-factor authentication, or least-privilege principals indicating that what the security industry historically described as basic security may be harder to achieve than portrayed.

Exploiting public-facing appl
LINK: https://uk.newsroom.ibm.com/IBM-Report-Cybercriminals-Intensify-Attack...
See more stories from ibm

Europe Stories

05/01/2027

Worlds first 802.15.4ab-UWB chip verified by Calterah and Rohde & Schwarz to be demoed at CES 2026

Worlds first 802.15.4ab-UWB chip verified by Calterah and Rohde & Schwarz to be ...

06/09/2026

Dolby and MagentaTV Bring Fans Closer to the FIFA World Cup 2026 in Germany with Dolby Vision and Dolby Atmos

June 9 2026, 23:00 (PDT) Dolby and MagentaTV Bring Fans Closer to the FIFA Worl...

04/08/2026

Dalet Announces Commercial Availability of Dalia, Bringing Media-Aware Agentic AI to Enterprise Productions

Dalet, a leading technology and service provider for media-rich organizations, t...

09/07/2026

Universal Audio Black Box HG-2 & elysia karacter

Latest analogue-emulation plug-ins revealed Universal Audio have just added two new analogue-emulation plug-ins to their DSP-powered UAD line-up. Developed ...

09/07/2026

Neumann launch U 47 FET Bon Scott Edition

Limited-edition mic celebrates rock icon Neumann have partnered with the Bon Scott Estate to create a limited-edition version of the U 47 FET that honours b...

09/07/2026

Plugin Station: Plug-in management software

Handles organisation, updates, troubleshooting & more Created by pro-audio software developer Julian Worden, Plugin Station from Julian Michael Technologies...

09/07/2026

LANDR expand Fair Trade AI programme

Introduces new $1 million advance programme LANDR have just announced the next phase of their Fair Trade AI programme, a pioneering opt-in music-licensing p...

09/07/2026

Spitfire Audio expand low-cost Originals range

Four new titles now available Spitfire Audio have just introduced four new titles in their Originals range, bringing the total count of libraries in the low...

09/07/2026

Enjoy Gigafast speeds and Ultimate TV pack for less

Thursday 9 July 2026 Enjoy Gigafast speeds and Ultimate TV pack for less The latest deals have dropped from Sky TV and Sky Broadband, the award-winning provid...

09/07/2026

Local campaigns with impact

Hands up who would like to dress up as a giant crisp packet? The call that went out across the agency as our anti-litter campaign, Wish you weren't here fo...

08/07/2026

Universal Audio introduce Black Box HG-2 & elysia karacter

Latest analogue-emulation plug-ins revealed Universal Audio have just added two new analogue-emulation plug-ins to their DSP-powered UAD line-up. Developed ...

08/07/2026

Pitch Innovations release Loop2Kit

Turn any audio loop into a playable kit Pitch Innovations have recently introduced an interesting new tool that's capable of creating playable kits from...

08/07/2026

MonkeyC update Rando sampler plug-in

Adds new keyboard-split function MonkeyC have recently launched an update that overhauls their powerful software sampler. Described as the sampler that mad...

08/07/2026

Strymon unveil the TimeLine MX

Four new delay algorithms & dual-engine functionality Strymon have just announced that the much-anticipated MX version of their hugely popular delay pedal i...

08/07/2026

Rohde & Schwarz and China Mobile Research Institute jointly demonstrate generative AI user experience testing

Rohde & Schwarz and China Mobile Research Institute jointly demonstrate generati...

08/07/2026

Hong Kong Jockey Club Expands Intercom Infrastructure With Riedel Artist-1024 and 1200 Series SmartPanels

Wuppertal July 8, 2026 Hong Kong Jockey Club Expands Intercom Infrastructure W...

08/07/2026

RT to air award-winning documentary TESTIMONY

Film follows the courageous fight for justice by survivors of Ireland's Magdalene Laundries & Mother and Baby Homes TESTIMONY airs Wednesday 22 July at 9...

07/07/2026

Open call: Apply for the Media Innovation Europe Validation Booster

Applications are now open for the Validation Booster, a six-month acceleration programme supporting journalists, media organisations, content creators, media in...

07/07/2026

Mix Buddy instrument mixer from Heritage Audio

New mixer aimed squarely at instrument-level sources Heritage Audio have clearly been busy recently, as alongside their all-new Tubestrip, they've also ...

07/07/2026

Heritage Audio unveil the Tubestrip

New channel strip combines popular hardware designs The latest arrival to the Heritage Audio line-up brings together a selection of their praised hardware d...

07/07/2026

Clear-Com Powers Ross Production Services Mobile Productions

eds3_5_jq(document).ready(function($) { $(#eds_sliderM519).chameleonSlider_2_1({ content_source:......

07/07/2026

Toby Regbo, Harry Gilby and Jessica Barden lead cast for The Cadburys - the true story of the Cadbury family - with filming now underway in Birmingham

UKTV commission with BritBox and Sony Pictures Television and inspired by Deborah Cadbury's book, Chocolate Wars The six-part series is produced by Fable P...

07/07/2026

Record audiences tune into the ICC Womens T20 World Cup 2026 on Sky Sports

Tuesday 7 July 2026 Record audiences tune into the ICC Women's T20 World Cup 2026 on Sky Sports The ICC Women's T20 World Cup 2026 was the most watche...

07/07/2026

Official trailer released for Fightland, a revenge drama from executive producer Curtis 50 Cent Jackson coming August to Sky and NOW

Tuesday 7 July 2026 Official trailer released for Fightland, a revenge drama fr...

07/07/2026

Riedel and ARRI Bring Cinematic Live Production to the Eurovision Song Contest

Wuppertal July 7, 2026 Riedel and ARRI Bring Cinematic Live Production to the Eurovision Song ContestRiedel Communications and ARRI played a key role in one o...

07/07/2026

Patrick Kielty in The Late Late Chair until 2028

To Whom It Concerns RT today confirmed that Patrick Kielty is to extend his contract as host of The Late Late Show. Last season, the world's longest-runn...

06/07/2026

Synth Anthology 5 From UVI

Bundle gains 100 new synths & more Synth Anthology 5 the largest and most feature-packed edition of UVI's hardware synth emulation bundle, bringing toge...

06/07/2026

MOTU 16A, 848 & 10pre gain Milan certification

Available now via free firmware update MOTU have just announced that three of their popular audio interfaces now boast official Milan Certification. The 16A...

06/07/2026

Rohde & Schwarz completes Hunter Preliminary Design Review for the Integrated Communications System

Rohde & Schwarz completes Hunter Preliminary Design Review for the Integrated Co...

06/07/2026

The R&S IMAGER from Rohde & Schwarz uses millimeter wave imaging to inspect the quality of packaged goods in real time

The R&S IMAGER from Rohde & Schwarz uses millimeter wave imaging to inspect the ...

06/07/2026

Sky Kids unveils new slate for 2026 including Paris Hiltons animated series, Paris & Pups

Monday 6 July 2026 Sky Kids unveils new slate for 2026 including Paris Hilton&#...

06/07/2026

Sky agrees to acquire ITV Media & Entertainment, creating a commercial streaming champion for the UK

Monday 6 July 2026 Sky agrees to acquire ITV Media & Entertainment, creating a ...

06/07/2026

Pico Lopes joins RT's FIFA World Cup 2026 Live panel

Fresh from his World Cup heroics with Cabo Verde, Roberto Pico' Lopes will join the RT panel for Argentina v Egypt tomorrow and for the England v Norway q...

06/07/2026

New RT documentary The Girl in the Water follows one family's search for answers following the death of their 23-year-old daughter

A death can be unsuspicious, but it has to be explained What happened to Ke...

05/07/2026

Free Behringer Synth Editor

Browser-based and desktop apps available Digital Sunset Studios have been busy working on an interesting project: a free software tool that provides compute...

04/07/2026

Rhodes to launch the MK8/80AE

Celebrates company's 80th anniversary Rhodes have recently revealed that they will be producing a limited run of electric pianos in celebration of their...

04/07/2026

** MEDIA ALERT **BLEACH: THOUSAND-YEAR BLOOD WAR - THE CALAMITY Continues Its Momentum at Anime Expo

** MEDIA ALERT ** BLEACH: THOUSAND-YEAR BLOOD WAR THE CALAMITY Continues I...

04/07/2026

** MEDIA ALERT ** VIZ Media Unveils New Anime Slate at Anime Expo 2026 with MAO, RWBY, and BLACK TORCH Updates

** MEDIA ALERT ** VIZ Media Unveils New Anime Slate at Anime Expo 2026 with ...

04/07/2026

Detective Conan: Fallen Angel of the Highway Opens in Dolby Cinemas Across Japan, Presented in Dolby Atmos and Dolby ...

April 7 2026, 19:00 (PDT) Detective Conan: Fallen Angel of the Highway Opens in...

03/07/2026

VSL reveal Synchron Brass (muted)

New bundle & three Single Packs Continuing to expand their already sizeable orchestral collection, VSL's latest release introduces three new Single Pack...

03/07/2026

London Symphony Orchestra upgrade LSO St Luke's

Venue installs new ATC-equipped control room LSO St Luke's, a unique music venue that also serves as the home of the London Symphony Orchestra, have rec...

03/07/2026

2023

1 February 2023 SHARE Facebook Twitter Linkedin Email Munich, Germany, 1st February 2023: Cinegy GmbH, the premier provider of software technology for digit...

02/07/2026

The Crow Hill Company introduce Brackish Pads

Stammering, stuttering, strangulated tones The Crow Hill Company's latest creation promises to be the most original sound set they've produced to d...

02/07/2026

Steinberg SpectraLayers 13 now available

A new era in unmixing and spectral editing The latest version of Steinberg's spectral audio-editing software has just arrived, building on the strength...

02/07/2026

Sine Machine from Melatonin

Aims to simplify additive synthesis Sine Machine is the debut launch from Melatonin, a Vienna-based developer who have spent the past six years creating wha...

02/07/2026

iZotope acquired by Boris FX

Products to remain fully active & supported Following the news of Native Instruments joining the inMusic brand line-up, Academy and Emmy Award-winning visua...

02/07/2026

GearExpo UK 2026

What you missed! Last weekend, Saturday 27 June 2026, saw the debut of Sound On Sounds new GearExpo UK event, the largest dedicated pro-audio event to take ...

02/07/2026

Tea with Judi Dench returns to Sky Arts with legendary guest, Sir Ian McKellen

Thursday 2 July 2026 Tea with Judi Dench returns to Sky Arts with legendary guest, Sir Ian McKellen Sky today confirms Tea with Judi Dench will return this su...

01/07/2026

Tracktion unleash Waveform 14 DAW

New AI Assistant, Multi-channel Audio, ARA2 improvements & more Tracktion's DAW software has just received its latest major update, gaining a selection ...