A recent report by Sophos reveals that identity attacks are now the leading cause of ransomware, surpassing previous reliance on software vulnerabilities. Key findings show that malicious emails (26%) and phishing (24%) constitute the top exploit methods, with compromised credentials following at 23%. Even though multifactor authentication was implemented in 97% of cases where credentials were compromised, it failed to prevent attacks, highlighting gaps in organization-wide deployment.
Experts suggest enhancing identity protection and threat detection, coupled with ongoing MFA improvements, as critical strategies against increasing ransomware threats.