London – February 12, 2025 – Acronis, a global leader in cybersecurity and data protection, has released its biannual report, "Acronis Cyberthreats Report, H2 2024: The rise of AI-driven threats". This reveals a significant rise in email cyberattacks, with a staggering 197% increase detected in H2 2024 compared to the same period in 2023, with a 21% rise in attacks per organisation. From July to December 2024, nearly 50% of users were targeted by email-based attacks at least once.

Authored by the Acronis Threat Research Unit (TRU), the report offers a comprehensive account of the global threat landscape as monitored by Acronis during the second half of 2024.

Key findings include:

• Acronis blocked over 48 million malicious URLs at endpoints in Q4 2024—a 7% increase from Q3 2024.
• 31.4% of all emails received in H2 2024 were spam, with 1.4% containing malware or phishing links.
• 1,712 ransomware cases were reported in Q4 2024, with notable activity from RansomHub, Akira, Play, and KillSec, accounting for 580 victims. The Cl0p ransomware group emerged as a key threat in December, with 68 reported victims.
• In December 2024, the UK blocked 7.2% of URLs

"The cyberthreats report from the Acronis Threat Research Unit serves as our biannual pulse on the cybersecurity landscape, offering critical insights into the latest attack trends and vulnerabilities," said Gerald Beuchelt, CISO at Acronis. "This release highlights the alarming rise of AI-generated attacks and the increasing sophistication of ransomware campaigns. By analysing trends from the first half of 2024 and providing actionable recommendations, the report empowers organisations, MSPs, and the cybersecurity industry to proactively strengthen their defenses to stay ahead of today's most pressing risks."

The report highlights an interesting trend: as remote monitoring and management (RMM) tools become more widely adopted for efficiency, they introduce significant risks to organisational security. Telemetry data from the report reveals that many organisations use multiple RMM tools simultaneously, creating blind spots that attackers can exploit. Without the proper controls, RMM tools can become entry points for ransomware attacks, which cybercriminals often use to cause even greater damage.

For more information, download a copy of the full Acronis H2 2024 Cyberthreats Report here and visit https://www.acronis.com/en-gb/cyber-protection-center/ for additional TRU resources.

To learn more about the report and its findings, visit the Acronis blog here: https://www.acronis.com/en-us/blog/posts/acronis-cyberthreats-h2-2024-report-ransomware-and-ai-are-a-dangerous-combination/

About Acronis
Acronis is a global cyber protection company that provides natively integrated cybersecurity, data protection, and endpoint management for managed service providers (MSPs), small and medium businesses (SMBs), and enterprise IT departments. Acronis solutions are highly efficient and designed to identify, prevent, detect, respond, remediate, and recover from modern cyberthreats with minimal downtime, ensuring data integrity and business continuity. Acronis offers the most comprehensive security solution on the market for MSPs with its unique ability to meet the needs of diverse and distributed IT environments.

A Swiss company founded in Singapore in 2003, Acronis has 15 offices worldwide and employees in 50+ countries. Acronis Cyber Protect is available in 26 languages in 150 countries and is used by over 20,000 service providers to protect over 750,000 businesses. Learn more at www.acronis.com.

Acronis Press Contact

David Fakeye
Account Executive
Davidf@wildfirepr.com