Check Point Research (CPR) has released new data on Q2 2024 cyberattack trends.
The data is segmented by global volume, industry and geography. These cyberattack numbers were driven by a variety of reasons, ranging from the continued increase in Digital Transformation and the growing sophistication of cybercriminals using advanced techniques like AI and Machine Learning.
Economic motivation for income from attacks like ransomware and phishing as well as attacks fuelled by geopolitical tensions and supply chain vulnerabilities continues to heavily impact this rise in the numbers.
This increase in global cyberattacks also stems from hacker interest in education and research, which saw the largest increase in cyberattacks in Q2 2024, when compared to all other industries. CPR warns that these factors can continue to accelerate the number of cyberattacks in 2024, driving the need for robust cybersecurity across all industries.
Key statistics:
- In Q2 2024, Check Point Research recorded a 30% year-over-year increase in global cyberattacks, marking the highest surge in the past two years. The UAE also saw a significant rise, with an 18% increase compared to Q2 2023
- The top three most attacked industries globally were education/research (3,341 attacks per week), government/military (2,084 attacks per week) and healthcare (1,999 attacks per week)
- Ransomware attacks involving public extortion increased by 13% year-over-year. The manufacturing sector accounted for 29% of the published ransomware victims globally, reflecting a 56% year-over-year increase
Cyberattacks are on the rise globally, with a 30% increase in weekly attacks on corporate networks in Q2 2024 compared to Q2 2023. Organisations faced an average of 1,636 attacks per week worldwide, while in the UAE, the average was 1,546 weekly attacks per organisation in Q2 2024, representing an 18% year-over-year increase. This relentless surge highlights the growing sophistication and persistence of threat actors, driven by multiple converging cyberthreat trends.
For instance, the education and research industry has consistently been a prime target for cybercriminals due to its wealth of sensitive information and often inadequate cybersecurity measures made further complex by multiple groups of online users within and outside of the network expanding the attack vector surface. In fact, the education/research sector was the number one most attacked industry globally, seeing a 53% increase in Q2 2024 compared to Q2 2023, with an average of 3,341 attacks per organisation every week.
Government/military was the second most attacked sector with 2,084 attacks per week, reflecting the high stakes involved in state-level cyber-espionage and disruption.
Looking back at cyberattacks for the healthcare sector in Q2, healthcare organisations saw an average of 1,999 weekly attacks per organisation, which was 15% higher than last year. Hackers like to target hospitals because they perceive them as short on cybersecurity resources with smaller hospitals particularly vulnerable, as they are underfunded and understaffed to handle a sophisticated cyberattack.
Ranking third out of all sectors for the most cyberattacks globally, healthcare is so lucrative to hackers because they aim to retrieve health insurance information, medical records numbers and, sometimes, even social security numbers.
Furthermore, the hardware vendor industry experienced the largest increase in attacks, with a dramatic rise of 183%. This surge underscores the expanding target range of cybercriminals as they seek to exploit vulnerabilities across various sectors.
Ransomware attacks per industry
In Q2 2024, ransomware attacks that involved public extortion were reported showing a 13% year-over-year increase, totaling approximately 1,200 incidents. In terms of industry impact, the manufacturing sector was the most affected, representing 29% of publicly extorted ransomware attacks’ victims globally, with a significant 56% year-over-year increase. The healthcare sector followed, accounting for 11% of the attacks and experiencing a 27% increase.
The retail/wholesale industry saw 9% of the attacks, with a notable 34% decrease from the previous year. Notably, the communications and utilities sectors experienced dramatic rises in ransomware incidents, with increases of 177% and 186%, respectively.
| Industry | Percent out of Published Ransomware Attacks | YoY Change in Number of Published Attacks |
| Manufacturing | 29% | +56% |
| Healthcare | 11% | +27% |
| Retail/Wholesale | 9% | -34% |
| Finance/Banking | 7% | -8% |
| Education/Research | 6% | -3% |
| Software vendor | 6% | -57% |
| Government/Military | 6% | +31% |
| Transportation | 6% | +40% |
| Insurance/Legal | 5% | -25% |
| Communications | 5% | +177% |
| Leisure/Hospitality | 3% | +0% |
| Consultant | 2% | -76% |
| Utilities | 2% | +186% |
| Energy | 1% | -25% |
Ram Narayanan, Country Manager at Check Point Software Technologies, Middle East, said: “In Q2 2024, the escalation of cyberattacks globally and within the UAE underscores the pressing need for robust cybersecurity measures. As threat actors become more sophisticated, leveraging advanced techniques like AI and Machine Learning, it is important that organiSations evolve their defense strategies accordingly.
“Cyberthreat defences should be focused on prevention to tackle the dynamic nature of the threats organisations are exposed to. The data from Check Point Research underscores the critical sectors needing immediate attention and reinforces the necessity of a multi-layered security approach to safeguard organisations across all sectors. We strongly recommend organisations everywhere to take note of our tips and best practices, to better protect themselves against the evolving and relentless cyberthreat landscape.”
Tips for prevention and mitigation
Organisations must take proactive steps to safeguard their data and systems. Here are some strategies inspired by best practices from Check Point Software:
- Enhance security posture: Regularly update and patch systems to close vulnerabilities. Multi-layered security measures, including firewalls and endpoint protection, are essential.
- Employee training and awareness: Regular training sessions can educate employees about the latest cyberthreats and phishing tactics, fostering a culture of vigilance.
- Advanced threat prevention: Utilise technologies such as sandboxing and anti-ransomware tools to detect and block sophisticated attacks.
- Adopt Zero Trust Architecture: Implement strict identity verification for every person and device attempting to access network resources.
- Regular backups and incident response planning: Ensure regular backups of critical data and develop comprehensive incident response plans to quickly address and mitigate the impact of attacks.
- Network segmentation: Isolate critical systems to limit the spread of attacks and protect sensitive information.
- Vulnerability management: Conduct regular vulnerability assessments and penetration testing, prioritising remediation efforts based on potential impact.
The dramatic rise in cyberattacks globally, particularly ransomware incidents, signals an urgent need for robust cybersecurity frameworks. Organisations must prioritise cybersecurity, adopting customised strategies to effectively combat the evolving threat landscape. By implementing advanced security measures, fostering a culture of awareness and preparing for potential incidents, businesses can better defend against the relentless tide of cyberthreats. The time to act is now, before the next wave of attacks strikes.
