Surge in long-lasting attacks: 35% exceeded one-month duration in 2024

March 18, 2025

According to the recent Kaspersky Incident Response analyst report, long-lasting attacks that persist for more than a month accounted for 35.2% of the total attacks in 2024.

The Kaspersky Incident Response analyst report offers detailed analysis of cyberattacks that Kaspersky investigated in 2024. It draws upon information from organizations that required assistance during security incidents and identifies emerging trends in threats across different industries and regions. This report serves as a valuable resource for organizations looking to improve their security operations and prepare for future incidents effectively.

The recent report indicates that the average duration of long-lasting cyberattacks, measured in median days, is a staggering 253 days. In response to these incidents, the median duration of incident response efforts was found to be 50 hours, showcasing the complexity and challenge in mitigating the impact of such attacks.

The primary impacts of long-lasting cyberattacks were identified as data encryption and leakage, posing significant risks to organizations. The initial vectors for these attacks predominantly include exploits targeting public-facing applications, leveraging trusted relationships and utilizing valid accounts.

“Understanding the evolving landscape of cyber threats is crucial for any organization striving to safeguard its assets and processes. Our findings reveal that the resilience of cybercriminals grows as technology advances, pushing organizations to not only respond but also to anticipate and adapt their security measures proactively,” comments Konstantin Sapronov, Head of Global Emergency Response Team at Kaspersky.

To strengthen your company’s protection against sophisticated attacks, deploy robust cybersecurity solutions and hire qualified practitioners to manage them or adopt managed security services such as Managed Detection and Response and Incident Response. These security services encompass the complete incident management cycle from threat identification to continuous protection and remediation. They assist in safeguarding against evasive cyberattacks, investigating incidents and offering expert support even if a company lacks security workers.

The full Incident Response analyst report 2024 is available via this link.

About Kaspersky

Kaspersky is a global cybersecurity and digital privacy company founded in 1997. With over a billion devices protected to date from emerging cyberthreats and targeted attacks, Kaspersky’s deep threat intelligence and security expertise is constantly transforming into innovative solutions and services to protect individuals, businesses, critical infrastructure, and governments around the globe. The company’s comprehensive security portfolio includes leading digital life protection for personal devices, specialized security products and services for companies, as well as Cyber Immune solutions to fight sophisticated and evolving digital threats. We help millions of individuals and nearly 200,000 corporate clients protect what matters most to them. Learn more at www.kaspersky.com.

Surge in long-lasting attacks: 35% exceeded one-month duration in 2024

Surge in long-lasting attacks: 35% exceeded one-month duration in 2024

About Kaspersky

Related Articles Press Releases

Serengeti 2.0: Kaspersky supports INTERPOL-led action leading to over 1,200 arrests

Kaspersky detected a new remote access trojan targeting financial institutions through Skype messenger

The magical comeback: Kaspersky and BI.ZONE report new PipeMagic activity in Saudi Arabia and Brazil

Is AI underrated as a travel agent? Kaspersky survey shows only 28% of travelers use AI to plan their trips, but more than 90% were happy with the results

Phishing evolves with AI and stealth: Kaspersky highlights biometric and signature risks

Kaspersky uncovers Efimer trojan targeting organizations through phishing emails

ISG highlights Kaspersky for its strong Extended Detection and Response

Vishing awareness now live in Kaspersky ASAP portfolio

Over half of security experts overwhelmed managing cybersecurity tools from multiple vendors

Kaspersky VPN praised for excellent high-speed performance in annual AV-TEST certification