Separator

The 2024 Elastic Global Threat Report: Basic Security Settings Are Easily Exploited by Adversaries

CEO Insights Team | Wednesday, 20 November, 2024
Separator

img

Elastic, the Search AI Company, today released its 2024 Elastic Global Threat Report, produced by Elastic Security Labs.

Based on observations from over 1 billion data points, the report reveals adversary success from using offensive security tools (OSTs) — testing tools created to proactively identify security flaws — alongside misconfigured cloud environments and a growing emphasis on credential access.

“As a global platform used by more than 200 million people, we’re committed to building the world's most trusted visual communication platform for our community across the globe".

"The Elastic Global Threat Report is a great asset that ensures our threat detection stays laser-focused on real-world adversary activity," said Raymond Schippers, Canva's Director of Security Engineering for Detection and Response".

"Understanding the top adversary techniques in the cloud is critical, and unlike other vendor reports that simply drop a name, Elastic’s diamond models give us a fast, in-depth look at adversary movements, helping us stay ahead of the game.

 

Key findings in the report include:

Adversaries are utilizing off-the-shelf tools

  • Offensive security tools (OSTs), including Cobalt Strike and Metasploit, made up ~54 percent of observed malware alerts.

  • Cobalt Strike accounted for 27 percent of malware attacks.

Enterprises are misconfiguring cloud environments, allowing adversaries to thrive

  • Nearly 47 percent of Microsoft Azure failures were tied to storage account misconfigurations.

  • Nearly 44 percent of Google Cloud users failed checks coming from BigQuery — specifically, a lack of customer-managed encryption.

  • S3 checks accounted for 30 percent of Amazon Web Services (AWS) failures — specifically a lack of multifactor authentication (MFA) being implemented by security teams.

In the wake of successful counters for Defense Evasion, attackers are leaning into legitimate credentials to infiltrate

  • Credential Access accounted for ~23 percent of all cloud behaviors, primarily in Microsoft Azure environments.

  • There was a 12 percent increase in Brute Force techniques — making up nearly 35 percent of all techniques in Microsoft Azure.

  • While endpoint behaviors accounted for ~three percent of the total behaviors in Linux, 89 percent of them involved brute-force attacks.

  • There has been a six percent decrease in Defense Evasion behaviors over the last year.

“The discoveries in the 2024 Elastic Global Threat Report reinforce the behavior we continue to witness: defender technologies are working. Our research shows a six percent decrease in Defense Evasion from last year”, said Jake King, head of threat and security intelligence at Elastic.

“Adversaries are more focused on abusing security tools and investing in legitimate credential gathering to act on their objectives, which reinforces the need for organizations to have well-tuned security capabilities and policies”.

Read More:

Reliance Brands MD Darshan Mehta to Step Down

Punit Bhatt Appoints Honda Cars India as Head of Advertising

In Print

CEOInsights TV




Most Viewed

From 'Volume' to 'Value': India Inc's Mantra to Capture the Global Pharmaceutical Market A Fight Back from Arabian Peninsula When will The Tech Industry’s Lay-off Season End? The Story of a Broken Trust Technology Key To Global Travel Recovery What To Keep In Mind When Selecting The Right Air Compressor For Replacement? The Best Way to Recover from Ransomware Attacks How Tensions Grew Worse between Elon Musk and Donald Trump New Markets, New Brands: Tailoring Success for Different Places Empowered Leadership in a Changing Legal World Four Key Steps For Healthcare Providers To Combat Ransomware Turning Vision into Value: How I Built Purposeful Digital Ecosystems in the UK Dave Thomas: A Role Model for Aspiring Entrepreneurs, Philanthropists Digital Analytics Products: How Organizations Choose Them Kelly Ortberg: The New Boeing CEO Who is Already on the Headlines India’s Military Alacrity for Modern Threats Reshma Saujani: Reshaping Social Attitudes Around Gender and Tech India is Manifesting Leadership in Drone Technology 5 Greatest Role Models in the Manufacturing Industry Creating a Stronger Ecosystem by Fixing the Nuts & Bolts of the Economy Microsoft for India: Making India for Future Ready India's UPI Launch in France Opens Gateway to Global Fintech Power Tim Cook Nears Retirement, Who Will Take Over Apple's Throne? Soil Based Microbial Fuel Cells Could Protect the Environment from Flammable Chemicals The mantra of Academic Collaboration Echoes on this Teachers’ Day Indian semiconductor Boom Has Abundant Room for SME-preneurs Indian Healthcare Ecosystem is Hosting a Multidimensional Paradigm Shift Being a True Republic: You Got to Love this New, Powerful India Qatar World Cup 2022 Might Be Over, But Arabian Peninsula’s Sports Dream is Just Beginning Reimagining the UK–India Partnership in a Changing Global Order These Schemes Will Facilitate Women Entrepreneurs Decarbonization & Sustainable Future: Technology & What it can Do?


🍪 Do you like Cookies?

We use cookies to ensure you get the best experience. Read more…