Categories

Editor's Choice
Tech Jobs Network
News & Events
Access Control & Identity Management
AI & Data Analytics
Asset Management
Associations
Conferences & Events
Facilities & Building Management
Fire & Safety
Information Security
Infrastructure
Integrated Solutions
IoT & Automation
Perimeter Security, Alarms & Intruder Detection
Power Management
Products & Solutions
Security Services & Risk Management
Smart Home Automation 
Surveillance
Training & Education
Videos
Security by Industry Sector ▾








Print this page printer friendly version

Identity is a cyber issue

SMART Access & Identity 2025 Access Control & Identity Management, Information Security

Businesses are facing increasingly sophisticated threats from ransomware groups, hacktivists, and individual attackers. The 2024 Arctic Wolf Security Operations Report sheds light on the key trends shaping the modern threat environment and provides actionable insights for businesses to enhance their cybersecurity postures.

Troye technical director Kurt Goodall says one of the dominant themes in this year’s report is the evolving nature of cyberthreats. “Despite the rapid advances in technology, tried-and-true methods like social engineering and exploiting unpatched vulnerabilities remain incredibly effective.”

“In fact, Arctic Wolf’s observations indicate that exploitation of known vulnerabilities with available patches outnumber the exploitation of zero-day vulnerabilities by 7,5 times,” he adds.

Furthermore, the report highlights a disturbing trend of increased phishing activity, with a notable 500% spike observed in just one month. Attackers continue to exploit world events, political upheavals, and natural disasters to lure unsuspecting victims. In April 2024 alone, phishing attempts surged by 150%, coinciding with major political announcements and occurrences as well as the ongoing conflicts in Russia-Ukraine and the Israel-Hamas.

In addition, Arctic Wolf’s 2024 SOC report highlights the critical need for 24x7 security operations, with 45% of the security alerts issued by their SOC being generated outside of regular working hours and 20% occurring on weekends.

Identity: The emerging battleground

Identity and access management (IAM) telemetry has emerged as the most common source of early threat detection, responsible for seven of the top 10 indicators of compromise leading to security investigations by the Arctic Wolf SOC.

Unauthorised credential usage and account takeovers (ATOs) remain a significant concern, with infostealers like the Win32.Zbot trojan appears in over 2000 weekly instances. These findings underscore the need for businesses to implement robust IAM systems and continuous monitoring to mitigate identity-based attacks.

Manufacturers under siege

Goodall says manufacturers are increasingly becoming targets of cyber espionage and intellectual property theft. “More than 26% of alerts in this year’s report were related to threats targeting manufacturers, 2,6x higher than expected. This finding aligns with growing concerns about industrial espionage, particularly as certain countries push for industrial modernisation.”

Ransomware: A persistent threat

Despite law enforcement takedowns and growing distrust between ransomware groups, ransomware remains a major threat. Arctic Wolf Security Engineers responded to 158 ransomware attempts between May 2023 and April 2024.

The company notes, “An effective SecOps function dramatically reduces the risk posed by ransomware.” Highlighting the importance of monitoring ransomware precursors such as initial access to the environment, the establishment of persistence, and the reconnaissance and exfiltration of data as a way to disrupt the attack chain of a ransomware attack.

The importance of vulnerability remediation

One of the simplest and most effective ways to mitigate cyber-risk is through vulnerability remediation. Attackers continue to exploit core business applications like Windows 10, MS Outlook, and Cisco IOS, with many vulnerabilities remaining unpatched for months or even years. Organisations are urged to prioritise remediation efforts, as known vulnerabilities outnumber zero-day threats by 7,5 to 1.

The 2024 Security Operations Report emphasises the critical importance of around-the-clock monitoring and a robust SecOps strategy. Organisations that can effectively operationalise their cybersecurity investments, respond swiftly to alerts, and build resilience through vulnerability management and identity protection will be far better equipped to defend against modern cyberthreats.

“As the report states, effective security operations is your best defence against today’s financially motivated attacks and government-backed espionage. For organisations seeking to safeguard their digital infrastructure, the report offers a comprehensive view of the threats they face and practical solutions to reduce cyber-risk,” he concludes.

Find the report at https://tinyurl.com/mta293be




Share this article:
Share via emailShare via LinkedInPrint this page


Further reading:

Paxton set to launch game-changing new system
Paxton Access Control & Identity Management News & Events
Access control is evolving fast. Installers and end users are looking for systems that are simple to install, easy to manage remotely, and flexible enough to scale. In response, Paxton is exploring how emerging technologies can reshape access control.

Read more...
NEC XON secures mobile provider’s hybrid identities
NEC XON Access Control & Identity Management Information Security Commercial (Industry)
For a leading South African telecommunications operator, identity protection has become a strategic priority as identity-centric attacks proliferate across the industry. The company faced mounting pressure to secure both human and non-human identities across complex hybrid environments.

Read more...
Cloud security in visitor management and access control
SA Technologies Access Control & Identity Management Infrastructure Residential Estate (Industry) Commercial (Industry)
Cloud has become the default platform for modern security operations, from visitor management portals and remote access control to incident logging, reporting, analytics, and integrations. But “in the cloud” does not mean “someone else is securing it for us”.

Read more...
Rise in malicious insider threat reports
News & Events Information Security
Mimecast Study finds 46% of SA organisations report a rise in malicious insider threat reports over the past year: reveals disconnect between security awareness and technical controls as AI-powered attacks accelerate.

Read more...
Centurion raises the bar at HomeSec Expo
Centurion Systems News & Events Access Control & Identity Management Residential Estate (Industry) Smart Home Automation Commercial (Industry)
Centurion Systems unveiled its latest product lines at HomeSec Expo 2026, introducing SMART+, a simpler way for installers and end users to manage their Centurion installations - as well as a few new products.

Read more...
New campaign exploiting Google Tasks notifications
News & Events Information Security
New phishing scheme abuses legitimate Google Tasks notifications to trick corporate users into revealing corporate login credentials, which can then be used to gain unauthorised access to company systems, steal data, or launch further attacks.

Read more...
What’s in store for PAM and IAM?
Access Control & Identity Management Information Security
Leostream predicts changes in Identity and Access Management (IAM) and Privileged Access Management (PAM) in the coming year, driven by evolving cybersecurity realities, hybridisation, AI, and more.

Read more...
Protecting citizens’ identities: a shared responsibility
Access Control & Identity Management
A blind spot in identity authentication today is still physical identity documents. Identity cards, passports, and driver’s licences, biometric or not, are broken, forged, or misused, fueling global trafficking networks and undermining public trust in institutions.

Read more...
The challenges of cybersecurity in access control
Technews Publishing SMART Security Solutions Access Control & Identity Management Information Security
SMART Security Solutions summarises the key points dealing with modern cyber risks facing access control systems, from Mercury Security’s white paper “Meeting the Challenges of Cybersecurity in Access Control: A Future-Ready Approach.”

Read more...
Access as a Service is inevitable
Technews Publishing SMART Security Solutions ATG Digital Access Control & Identity Management Infrastructure
When it comes to Access Control as a Service (ACaaS), most organisations (roughly 90% internationally) plan to move, or are in the process of moving to the cloud, but the majority of existing infrastructure (about 70%) remains on-premises for now.

Read more...











SMART Security Business Directory


While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.

Published by Technews

»  Dataweek Electronics & Communications Technology
»  Electronics Buyers' Guide (EBG)

»  SMART Security Solutions
»  SMART Security Business Directory

»  Motion Control in Southern Africa
»  Motion Control Buyers' Guide (MCBG)

»  South African Instrumentation & Control
»  South African Instrumentation & Control Buyers' Guide (IBG)



© Technews Publishing (Pty) Ltd. | All Rights Reserved.