The latest Kaspersky Threats to SMB report exposed an ongoing and troubling reality as cybercriminals continue to target SMBs with a range of sophisticated tactics. It showed the number of SMB employees encountering malware or unwanted software disguised as legitimate business applications has remained relatively steady year-on-year (2,478 in 2023 compared to 2,572 in 2022), and cybercriminals are persisting in their efforts to infiltrate these businesses.
The fraudsters employ a multitude of methods, including exploiting vulnerabilities, employing phishing emails, deceptive text messages, and even utilizing seemingly harmless YouTube links, all with the aim of gaining unauthorized access to sensitive data. This concerning trend underscores the urgent need for enhanced cybersecurity measures to safeguard SMBs from the relentless onslaught of cyber threats. The report reveals that the total number of detections of these malicious files aimed at SMBs during the first five months in 2023 reached 764,015.
Exploits were the most prevalent threat to SMBs, accounting for 63 percent (483,980) of all detections during the first five months of 2023. These malicious programs target software vulnerabilities, permitting cybercriminals to run malware, elevate their privileges, or disrupt critical applications without any user interaction.
Phishing and scam threats also pose a significant risk to SMBs, with cybercriminals adeptly tricking employees into divulging confidential information or falling victim to financial scams. Examples of such deceptive tactics include fake banking, delivery, and credit service pages designed to deceive unsuspecting individuals.
Moreover, the Kaspersky report draws attention to a frequently utilized method for infiltrating employees' smartphones, referred to as "smishing" – a clever combination of SMS and phishing. This technique involves the victim receiving a text message with a link, distributed through various platforms like SMS, WhatsApp, Facebook Messenger, WeChat, and others. If the unsuspecting user clicks on the embedded link, their device becomes vulnerable to the upload of malicious code, compromising its security.
The data used in this report was collected from January to May 2023 via Kaspersky Security Network (KSN), a secure system for processing anonymized cyberthreat-related data voluntarily shared by Kaspersky users. Kaspersky experts scrutinized the most widely used software used by SMBs worldwide, including MS Office, MS Teams, Skype, and others. By cross-referencing this software against KSN telemetry, the researchers determined the extent of malware and unwanted software distributed under the guise of these applications.
"The vulnerabilities faced by SMBs are not to be underestimated. As these businesses are the backbone of most countries' economies, it is crucial that governments and organizations alike step up their efforts to safeguard these enterprises. Awareness and investment in robust cybersecurity solutions must become a top priority to protect SMBs from evolving cyber threats," comments Vasily Kolesnikov, a security expert at Kaspersky.
To access the full report and learn more about the cyberthreats facing SMBs, please visit Securelist.com
To protect your business from cyberthreats, please consider the following guidelines:
· Provide your staff with basic cybersecurity hygiene training. Conduct a simulated phishing attack to ensure that they know how to distinguish phishing emails.
· Use a protection solution for endpoints and mail servers with anti-phishing capabilities, such as Kaspersky Endpoint Security for Business or Cloud-Based Endpoint Security, to minimize the chance of infection through a phishing email.
· If using Microsoft 365 cloud service, do not forget to protect it too. Kaspersky Security for Microsoft Office 365 has a dedicated anti-spam and anti-phishing as well as protection for SharePoint, Teams, and OneDrive apps for secure business communications.
· Set up a policy for access to corporate assets, including email boxes, shared folders, and online documents. Keep it up to date and remove access if an employee no longer needs the details to do their job or when they leave the company. Use cloud access security broker software that can help manage and monitor employee activity within cloud services and enforce security policies.
· Make regular backups of essential data to ensure corporate information stays safe in case of emergencies.
· Use professional services to help you get the most out of your cybersecurity resources. New Kaspersky Professional Services Packages for SMB give the opportunity to rely on Kaspersky's experts in terms of Assessment, Deployment and Configuration, when you just need to add the Packages to the contract, and the experts do the rest.
Kaspersky is a global cybersecurity and digital privacy company founded in 1997. Kaspersky’s deep threat intelligence and security expertise is constantly transforming into innovative security solutions and services to protect businesses, critical infrastructure, governments, and consumers around the globe. The company’s comprehensive security portfolio includes leading endpoint protection and specialized security solutions and services, as well as Cyber Immune solutions to fight sophisticated and evolving digital threats. Over 400 million users are protected by Kaspersky technologies, and we help over 220,000 corporate clients protect what matters most to them. Learn more at www.kaspersky.com.