every second hacker cyber attack is aimed at capturing the infrastructure of companies / Society news of Krasnoyarsk and the Krasnoyarsk Territory / Newslab.Ru

12 May 16:41
MegaFon's monitoring and incident response center (SOC) analyzed the recorded threats against customers.
Experts studied data for 2025: almost half of the attacks involve manipulation of corporate infrastructure. However, only 9.5% of all incidents are classified as high criticality.
The study showed that 48.3% of incidents are related to system manipulation, when attackers seek to make changes to the operation of the company’s infrastructure: from attempts to download suspicious files to changing system configuration settings. Such actions often precede more serious attacks and can lead to the compromise of entire IT systems.
Just under a third of cases (28.7%) involve attempts to gain access to confidential data and management systems. Network intelligence accounts for 18.9% of all incidents. Hackers actively scan the infrastructure, using various tools to find vulnerabilities and gain a foothold within the victim company.
As for virus threats, despite the relatively low overall percentage (4.1%), they remain a serious problem. Attackers are improving their evasion techniques using sophisticated techniques to infect and distribute malware. Experts distinguish two main types: information stealer malware, which disguises itself as legitimate applications and is aimed at stealing confidential data, and ransomware, which encrypts files or destroys infrastructure and demands a ransom for recovery.
More than half of the incidents are classified as low criticality (51.5%), 39% are medium criticality events. Almost 10% are critical and require immediate response.
Manufacturers of industrial goods show the greatest interest in SOC (23.5%), which is due to regulatory requirements and the criticality of protecting production processes. In second place are organizations from the IT and telecommunications sector (11.8%). There is a noticeable growing demand from agriculture and the agro-industrial complex (8.8%), which is due to the digitalization of the industry and the introduction of “smart” technologies: enterprises are building proactive protection to reduce the risks of failures.
In modern conditions, interest in security monitoring services is driven by both tightening regulatory requirements and increased cyber attacks. In addition, attackers are actively introducing artificial intelligence technologies into their tools. AI automates reconnaissance processes, generates malicious code and adapts attacks to specific defense systems. This leads to attacks becoming more sophisticated and their consequences more destructive.
Advertising. PJSC MegaFon. erid: 2VfnxwPDGjc




