Back Most cybersecurity intrusions are due to human error

2025 / 01 / 15
ZIURen txostenak industria-ehunaren kontzientziaziorako zibersegurtasunaren esparruko joerak aztertu ditu. Eta ildo horretan, 2024ean, urritik abendura, Espainian %23,23 igo direla ransomware-erasoarekin lotutako gertakariak nabarmendu du.

Most cybersecurity intrusions are due to human error

ZIUR recommends that the industry implement cybersecurity policies that include training programs after the increase in ransomware

After analyzing the entry vectors used by ransomware groups based on public negotiations, the ZIUR center has concluded in its latest Cyber ​​Intelligence Report that most of the intrusions that occurred in the last quarter of 2024 have been due to human error.

The report from the Gipuzkoa Industrial Cybersecurity Center, which analyzes the trends that have occurred within the field of cybersecurity to raise awareness in the industrial sector, highlights that between October and December 2024, incidents related to ransomware attacks have increased by 23.23% in Spain, and that a new phishing campaign has been identified to deploy the Strela Stealer malware in the country, which seeks to steal email credentials.

This is why, after analysing the most notable cyberattack campaigns, the latest vulnerabilities detected and the latest ransomware incidents, the Guipuzcoan centre urges companies in its report to implement cybersecurity policies that include training programmes for employees to recognise social engineering attacks, such as ransomware and phishing attacks, as well as to carry out periodic audits that identify weak points in access requirements, and to automate the process of revoking and restoring compromised credentials.

Hacktivism and vulnerabilities

ZIUR's quarterly Cyber ​​Intelligence Report also shows that a significant decrease has been detected in the number of attacks recorded in Spain in terms of hacktivism, after being one of the main targets of pro-Russian groups in the previous quarter.

However, it warns that an increase has been detected in the publication of vulnerabilities compared to the third quarter, breaking the downward trend observed since July. This trend is replicated in the industrial field, with a total of 31 more specific vulnerabilities reported in Industrial Control Systems (ICS) compared to the previous period. In addition, it highlights that zero-day vulnerabilities continue to be used by actors in both cyberespionage and cybercrime campaigns.

Access the report here.