Akamai Reveals New Research on Top Three Internet Security Threats

Rhea-AI Summary

Akamai Technologies (NASDAQ: AKAM) unveiled three crucial research reports at the RSA Conference 2022, focusing on ransomware, web applications and APIs, and DNS traffic. The reports provide an analysis of attack trends and methodologies, revealing that 60% of successful Conti ransomware attacks targeted U.S. companies. Notably, there was a 300% year-over-year increase in web application attacks. Additionally, over 10% of monitored devices were found to communicate with malicious domains, highlighting significant cybersecurity threats. These insights aim to bolster security for organizations worldwide.

Positive

• New research reports highlight critical cybersecurity trends, enhancing industry knowledge.
• 60% of successful Conti ransomware attacks targeted U.S. companies, showcasing the need for improved defenses.
• 300% year-over-year increase in web application attacks indicates heightened awareness and potential for growth in cybersecurity solutions.

Negative

• Ransomware-as-a-Service (RaaS) attacks are rising, creating more challenges for businesses.
• Over 10% of monitored devices were found communicating with malicious domains, suggesting widespread vulnerabilities.

Reports Offer In-Depth Insights on Ransomware, Web Applications and APIs, and DNS Traffic

CAMBRIDGE, Mass., June 7, 2022 /PRNewswire/ -- Akamai Technologies, Inc. (NASDAQ: AKAM), the cloud company that powers and protects life online, revealed three new research reports today at the RSA Conference 2022. These in-depth reports focus on three of the most critical areas of web security: ransomware, web applications and APIs, and DNS traffic.

Analyzing trillions of data points across its multiple platforms, the Akamai research team uncovered new findings on threat actor behavior via popular attack traffic and techniques. The three reports link the most prominent security trends and paint an accurate map of the modern attack landscape. An up-to-date analysis of ransomware attack trends highlight the risks and suggest mitigation, while an analysis of Web app and API attack trends offers a fresh look at the infection vectors used by ransomware operators and others. An analysis of DNS complements the reports with a view of overall attacks analyzed via one of the internet's most foundational technologies. 

Authored by Akamai's team of cybersecurity experts, the analysis centers on attack trends and techniques as well as solutions to solve today's most pressing cybersecurity issues. Highlights from each report include:

• Akamai Ransomware Threat Report: With the rise of Ransomware-as-a-Service (RaaS) attacks, including from the Conti ransomware gang, Akamai analyzed and discovered the most recent and effective components of ransomware attackers' methodologies, tools and techniques. Key findings include:
•  Sixty percent of successful Conti attacks were conducted on United States companies, while 30% occurred in the European Union.
• An analysis of the industries attacked highlights the risk of supply chain disruption, critical infrastructure impact, and supply chain cyberattacks.
• Most successful Conti attacks target businesses with $10-250 million in revenue, indicating a "goldilocks" range of successful attack targets among medium and small businesses.
• The gang's tactics, techniques, and procedures (TTPs) are well-known, but highly effective – a sobering reminder of the arsenal that is at the disposal of other hackers. But also that these attacks can be prevented with the right mitigation.
• Conti's emphasis in their documentation on hacking and hands-on propagation, rather than encryption, should drive network defenders to focus on those parts of the kill chain as well, instead of focusing on the encryption phase.

• Akamai Web Application & API Threat Report: Through the first half of 2022, Akamai observed significant increases in web application and API attacks across the globe, with more than nine billion attack attempts to date. Details for each of the company's key observations are as follows:
• Web application attack attempts against customers grew by more than 300% year over year in H1, the largest increase Akamai has ever observed. 
• LFI attacks now surpass SQLi attacks as the most predominant WAAP attack vector, increasing by nearly 400% year over year.
• Commerce is the most impacted vertical, accounting for 38% of recent attack activity, while technology has seen the most growth so far in 2022.

• Akamai DNS Traffic Insights Threat Report:  Analyzing more than 7 trillion DNS queries per day and proactively identifying and blocking threats, including malware, ransomware phishing, and botnet, Akamai researchers found:
• More than 1 of 10 monitored devices communicated at least once to domains associated with malware, ransomware, phishing or command and control (C2).
• Phishing traffic showed that most victims were targeted by scams that abused and mimicked technology and financial brands, which affected 31% and 32% of the victims, respectively. 
• According to research that analyzed more than 10,000 malicious JavaScript samples — representing threats like malware droppers, phishing pages, scammers and cryptominers' malware — at least 25% of the examined samples used JavaScript obfuscation techniques to evade detection.

"These new reports offer a detailed look into some of the most pressing security issues facing organizations today," said Ofri Ziv, Akamai's Senior Director of Security Research.  "Akamai's unparalleled visibility across much of the global threat landscape allows our researchers to analyze and correlate events that are seldom seen by other groups. We hope to help the community understand where threat actors are focused and how to better protect themselves from new threats as these threats continue to evolve."  

For additional information, the security community can access, engage with, and learn from Akamai's threat researchers by visiting the new Akamai Security Hub  and following the team on Twitter at @Akamai_Research.

To meet with Akamai at the 2022 RSA Conference, attendees can find the research team at Booths 0655 & 3238 (Moscone South).

About Akamai

Akamai powers and protects life online. Leading companies worldwide choose Akamai to build, deliver, and secure their digital experiences — helping billions of people live, work, and play every day. With the world's most distributed compute platform — from cloud to edge — we make it easy for customers to develop and run applications, while we keep experiences closer to users and threats farther away. Learn more about Akamai's security, compute, and delivery solutions at akamai.com and akamai.com/blog, or follow Akamai Technologies on Twitter and LinkedIn.

Contacts:
Jim Lubinskas
Akamai Media Relations
+1.703.907.9103
jlubinsk@akamai.com

 

View original content to download multimedia:https://www.prnewswire.com/news-releases/akamai-reveals-new-research-on-top-three-internet-security-threats-301560823.html

SOURCE Akamai Technologies, Inc.

FAQ

What did Akamai reveal at the RSA Conference 2022 regarding cybersecurity?

Akamai released three research reports focusing on ransomware, web applications and APIs, and DNS traffic.

How much did web application attacks increase according to Akamai's reports?

Web application attack attempts grew by over 300% year-over-year in the first half of 2022.

What percentage of Conti ransomware attacks targeted U.S. companies?

60% of successful Conti ransomware attacks targeted companies in the United States.

What insights did Akamai provide about threats from DNS traffic?

Akamai found that over 10% of monitored devices communicated with domains associated with malware or phishing.

How does Akamai's research contribute to cybersecurity?

The research reports provide valuable insights into attack trends and methodologies, helping organizations strengthen their defenses.