AI-Driven Cyber Threats Surge: Acronis Report Warns of Rising Risks for MSPs and Global Organizations

Acronis, a leader in cybersecurity and data protection, has unveiled alarming trends in its latest Cyberthreats Report, H2 2024: The Rise of AI-Driven Threats. The report highlights a sharp escalation in email-based cyberattacks, with incidents surging by 197% compared to the latter half of 2023. Between July and December 2024, nearly half of users faced email-based threats, while spam accounted for 31.4% of all emails—1.4% of which contained malware or phishing links.

Managed service providers (MSPs) emerged as prime targets, with phishing remaining the primary method for breaching their networks. The report indicates that 33% of MSPs encountered phishing campaigns, while attackers also exploited vulnerabilities in Remote Desktop Protocol (RDP) and remote access tools to infiltrate systems. These findings highlight how cybercriminals are exploiting common MSP practices to deploy malicious payloads.

According to Gerald Beuchelt, Chief Information Security Officer at Acronis, the report provides crucial insights into evolving cyberthreats and highlights the growing sophistication of AI-driven attacks and ransomware campaigns. He stressed that by examining trends from early 2024, the report equips organizations and MSPs with actionable strategies to bolster their defenses against emerging threats.

The analysis also reveals a growing threat from advanced persistent threat (APT)-linked ransomware groups targeting MSPs. These attackers employ espionage-style tactics such as credential theft, social engineering, and supply chain attacks to compromise MSP networks and infiltrate client systems. The shift indicates that MSPs are no longer viewed as opportunistic targets but as critical gateways for large-scale cyberattacks.

Geographically, the UAE faced the highest number of malware attacks in December 2024, registering 16.2% of blocked malicious URLs—surpassing Brazil (13.2%) and Singapore (12%).

The report further notes that the growing adoption of remote monitoring and management (RMM) tools is creating security vulnerabilities. Acronis’s telemetry data shows that many organizations operate multiple RMM tools simultaneously, resulting in blind spots that attackers can exploit. Without robust security controls, RMM tools can serve as entry points for ransomware attacks, escalating potential damage.

In addition to analyzing trends from the second half of 2024, the report outlines the top vulnerabilities exploited throughout the year and offers predictions for 2025. It also provides practical recommendations to help organizations and MSPs strengthen their cybersecurity strategies against emerging and AI-driven threats.

Have you read?
Countries Most in Debt to the International Monetary Fund (IMF).
Most Successful Unicorn Startups.
$100 Billion Club: Richest People With The 12-Figure Fortunes.
Largest electricity consumers in the world, by country (in terawatt-hours).
Countries that Export the Most Goods and Services.