“The quarter saw ‘human hacking’ evolve from a long-standing security challenge to threat actors’ method of choice,” the risk advisory firm says in its new report. “This was evidenced by our observations of the dramatic escalation of social engineering tactics, with significant increases in phishing, smishing, valid accounts, voice phishing and other tactics…”
Professional services firms were the most targeted, according to Kroll. The report includes some useful updates on new or accelerating social engineering attack groups and tactics.
The image below outlines attacks by a new ransomware group, RHYSIDA, which targets the healthcare sector.