Introduction
In 2024 [1] [2] [3] [4] [5] [6], the landscape of cybersecurity faced unprecedented challenges as automated scanning activities and cybercriminal activities surged to record levels. This escalation highlighted significant digital vulnerabilities and underscored the urgent need for enhanced security measures.
Description
In 2024 [1] [2] [3] [4] [5] [6], global automated scanning activity reached record levels, surging by 16.7% to approximately 36,000 scans per second. This increase highlights significant digital vulnerabilities, as cybercriminals executed billions of scans monthly [1], intensifying their focus on mapping exposed services such as SIP and RDP, along with OT/IoT protocols like Modbus TCP [2].
The National Vulnerability Database recorded over 40,000 new vulnerabilities this year [1] [3], marking a 39% increase from 2023 [1] [3], while cybercrime marketplaces, driven by Cybercrime-as-a-Service (CaaS) models [4], contributed to this alarming trend. FortiGuard Labs reported a staggering 500% rise in logs from systems compromised by infostealer malware [3], resulting in 1.7 billion stolen credential records circulating online [3].
Critical sectors [4], particularly manufacturing and business services [4], have become prime targets, with the US experiencing 61% of these attacks [4]. Additionally, cybercriminals shared over 100 billion compromised records, fueled by the rise of “combo lists” that facilitate large-scale credential theft attacks. Groups such as BestCombo, BloddyMery [5], and ValidMail have been particularly active, lowering the barriers to entry by packaging and validating credentials, thereby increasing account theft and financial fraud.
The report underscores the rapid evolution of AI-driven threats [3], with attackers leveraging tools like FraudGPT and BlackmailerV3 to craft highly convincing phishing campaigns that evade traditional defenses [3]. As the landscape of cybercrime continues to evolve, organizations are urged to adopt intelligence-led defense strategies [1] [4], emphasizing attack surface management [4], real-world adversary simulation [4], and dark web monitoring [4]. Experts highlight the necessity of real-time AI-powered security solutions to combat these evolving threats and prevent operational disruptions [4], prioritizing vulnerabilities using frameworks such as EPSS and CVSS to enhance their security posture.
Conclusion
The surge in automated scanning and cybercriminal activities in 2024 has exposed critical vulnerabilities across various sectors, necessitating immediate and robust security measures. Organizations must prioritize intelligence-led defense strategies and adopt real-time AI-powered solutions to mitigate these evolving threats. As cybercriminals continue to innovate, the importance of proactive security measures and continuous monitoring cannot be overstated, ensuring resilience against future cyber threats.
References
[1] https://undercodenews.com/global-surge-in-cyber-threats-how-automation-and-ai-are-fueling-a-new-wave-of-attacks/
[2] https://www.fortinet.com/corporate/about-us/newsroom/press-releases/2025/fortinet-threat-report-reveals-record-surge-in-automated-cyberattacks
[3] https://www.infosecurity-magazine.com/news/increase-automated-scanning/
[4] https://thecyberwire.com/podcasts/daily-podcast/2296/transcript
[5] https://www.fortinet.com/lat/corporate/about-us/newsroom/press-releases/2025/fortinet-threat-report-reveals-record-surge-in-automated-cyberattacks
[6] https://www.automationmag.com/fortinet-threat-report-reveals-record-surge-in-automated-cyberattacks/
