80% of ransomware attacks come from supply chain exploits

According to a report published by At-Bay, hackers used remote access tools as their initial entry point in 80% of ransomware attacks in 2024. The report is based on At-bay insurance claims from 2021 to 2024.

Mid-size businesses saw a 46% increase in direct ransomware frequency and severity, with the manufacturing industry being the one hit most frequently.

According to the report, this might be because this industry isn’t obligated to follow strict cybersecurity best practices like law firms or healthcare providers.

The main entry vectors are VPN services, remote desktop protocols (RDP), and other remote access tools. This showcases how malicious actors are focusing more on companies that operate specific, high-risk technologies, such as on-premises Microsoft Exchange and VPN appliances from Cisco, Citrix, SonicWall, and Fortinet.

As written in the report:

Many small businesses are one data breach from closing their doors – especially the ones that deal with customers’ sensitive data.

So, it’s key to develop cybersecurity plans to ensure your business is able to defend itself from malicious hackers. Unfortunately, you also need to consider all the third-party companies you work with.

From CRM to VPN services and payment gateways, everything can be exploited to ransack your information and ask for your hard-earned money. We compiled a list of everything you need to know about supply chain attacks, but when it comes to ransomware attacks, the number one rule is: backups!

Make sure you use a secure online backup service and have scheduled backups running often. Same thing with the providers you use to save your important information. This way, if a hacker is able to block your access to your data, you can easily restore everything without a worry.