Due to their widespread use, popular productivity tools are often targeted by hackers. These tools can provide access to large amounts of sensitive data.
Hackers who successfully exploit these tools can access multiple organizations, disrupt business operations, and steal personal information. Cybersecurity researchers at Kaspersky Lab found that threat actors have been actively exploiting SMBs using popular productivity tools.
Small and medium-sized businesses (SMBs) are more vulnerable to cyber security threats due to the adoption of digital technology and limited funds. Kaspersky Security Network telemetry showed a high incidence of malicious files targeting SMB applications in 2024.
Adequate security is essential for UK SMEs, with about half expected to suffer annual cyber-attacks. The trend highlights the vulnerability of SMEs to cyber attacks and the costs that can be incurred through operational disruption and financial losses.
The following popular productivity tools were included in this research:
* Microsoft Excel
* Microsoft Outlook
* Microsoft PowerPoint
* Salesforce
* Microsoft Word
* Microsoft Teams
* QuickBooks
* Microsoft Exchange
* Skype for business
* ClickUp
* Hootsuite
* Zendesk
Between January and April 2024, SMBs were targeted by malware and unwanted software, affecting 2,402 users. A total of 4,110 unique malicious files were distributed.
Excel has emerged as the most forged application for attacks. Overall, infections in the SMB sector increased by 5% to reach 138,046 during this period compared with those noted early last year.
Trojans continued to be the most common threat. Threat actors are developing malware that mimics legal programs, making it difficult to uncover.
The trend shows how fast-changing cyber threats are and the improved sophistication of attacks against SMBs. This implies that highly sophisticated adaptive security systems must be used in this sector.
SMBs continue to have a big hole in employee negligence, while phishing attacks are hazardous. Threat actors use various channels to trick users into sharing their personal information.
The primary targets are delivery services, insurance portals, and Microsoft services. Social media account takeovers can damage businesses’ reputations and even result in customer data breaches.
To counter these threats, SMBs should invest in comprehensive cybersecurity solutions, establish access policies for corporate resources, limit and update access to critical data, implement robust security measures, and regularly train employees on how to recognize and evade cyber threats.
[/INST]
Source: https://cybersecuritynews.com/threat-actors-exploiting-smbs-productivity-tools/