Express Computer

Home  »  News  »  The 2024 Elastic Global Threat Report: Basic security settings are easily exploited by adversaries

The 2024 Elastic Global Threat Report: Basic security settings are easily exploited by adversaries

News
By Express Computer
0 10

Elastic, the Search AI Company, released its 2024 Elastic Global Threat Report, produced by Elastic Security Labs. Based on observations from over 1 billion data points, the report reveals adversary success from using offensive security tools (OSTs) — testing tools created to proactively identify security flaws — alongside misconfigured cloud environments and a growing emphasis on credential access.

“As a global platform used by more than 200 million people, we are committed to building the world’s most trusted visual communication platform for our community across the globe. The Elastic Global Threat Report is a great asset that ensures our threat detection stays laser-focused on real-world adversary activity,” said Raymond Schippers, Canvas Director of Security Engineering for Detection and Response. “Understanding the top adversary techniques in the cloud is critical, and unlike other vendor reports that simply drop a name, Elastic’s diamond models give us a fast, in-depth look at adversary movements, helping us stay ahead of the game.

Key findings in the report include:

Adversaries are utilising off-the-shelf tools

  • Offensive security tools (OSTs), including Cobalt Strike and Metasploit, made up to around 54 percent of observed malware alerts
  • Cobalt Strike accounted for 27 percent of malware attacks

Enterprises are misconfiguring cloud environments, allowing adversaries to thrive

  • Nearly 47 percent of Microsoft Azure failures were tied to storage account misconfigurations
  • Nearly 44 percent of Google Cloud users failed checks coming from BigQuery — specifically, a lack of customer-managed encryption
  • S3 checks accounted for 30 percent of Amazon Web Services (AWS) failures — specifically a lack of multifactor authentication (MFA) being implemented by security teams

In the wake of successful counters for defense evasion, attackers are leaning into legitimate credentials to infiltrate

  • Credential Access accounted for approximately 23 percent of all cloud behaviors, primarily in Microsoft Azure environments
  • There was a 12 percent increase in Brute Force techniques — making up nearly 35 percent of all techniques in Microsoft Azure
  • While endpoint behaviors accounted for around three percent of the total behaviors in Linux, 89 percent of them involved brute-force attacks
  • There has been a six percent decrease in defense evasion behaviors over the last year

“The discoveries in the 2024 Elastic Global Threat Report reinforce the behavior we continue to witness: defender technologies are working. Our research shows a six percent decrease in Defense Evasion from last year,” said Jake King, Head of Threat and Security Intelligence at Elastic. “Adversaries are more focused on abusing security tools and investing in legitimate credential gathering to act on their objectives, which reinforces the need for organisations to have well-tuned security capabilities and policies.”

Get real time updates directly on you device, subscribe now.

Express Computer

Express Computer is one of India's most respected IT media brands and has been in publication for 24 years running. We cover enterprise technology in all its flavours, including processors, storage, networking, wireless, business applications, cloud computing, analytics, green initiatives and anything that can help companies make the most of their ICT investments. Additionally, we also report on the fast emerging realm of eGovernance in India.

You might also like More from author
Leave A Reply

Your email address will not be published.

LIVE Webinar

Digitize your HR practice with extensions to success factors

Join us for a virtual meeting on how organizations can use these extensions to not just provide a better experience to its’ employees, but also to significantly improve the efficiency of the HR processes
REGISTER NOW 
Powered by Convert Plus

Stay updated with News, Trending Stories & Conferences with Express Computer
Follow us on Linkedin
India's Leading e-Governance Summit is here!!! Attend and Know more.
Register Now!
close-image
Attend Webinar & Enhance Your Organisation's Digital Experience.
Register Now
close-image
Enable A Truly Seamless & Secure Workplace.
Register Now
close-image
Attend Inida's Largest BFSI Technology Conclave!
Register Now
close-image
Know how to protect your company in digital era.
Register Now
close-image
Protect Your Critical Assets From Well-Organized Hackers
Register Now
close-image
Find Solutions to Maintain Productivity
Register Now
close-image
Live Webinar : Improve customer experience with Voice Bots
Register Now
close-image
Live Event: Technology Day- Kerala, E- Governance Champions Awards
Register Now
close-image
Virtual Conference : Learn to Automate complex Business Processes
Register Now
close-image