The reported number of cyberattacks in Switzerland has doubled compared to the same period last year, according to the Federal Office for Cyber Security. In the first half of 2024, 34,789 reports were made, with a cyber incident being alerted to the FOCS every eight and a half minutes. 90% of these reports came from individuals, while 10% were from companies. Currently, all reports are made voluntarily, but in 2025, the confederation will require operators of critical infrastructure to report incidents. The FOCS expects this change to provide a clearer picture of the overall cyber threat landscape.
Out of the 34,789 reports made, two-thirds were about fraud cases. Of these, 60% involved phone scams, where criminals pretended to be from Swiss authorities. The FOCS explains that bots call large numbers of people, playing a recorded message that tricks them into thinking they’re part of a police investigation. If the person presses a button for more information, they are connected to someone posing as an authority worker. The criminals then try to convince the victim to install software that gives them remote access, allowing them to steal bank information.
Increased phishing attempts
The FOCS has also seen a significant rise in phishing reports. There were 6,643 cases in the first half of 2024, around 2,800 more reports compared to the same period last year. Scammers mainly target victims using fake parcel delivery notifications, but also impersonate well-known companies like SBB, Swisspass, and various tax authorities to trick people. Phishing attempts targeting Microsoft 365 accounts are also frequently reported. Chain phishing, which follows the 'snowball principle,' is also becoming more common. In these cases, cybercriminals send fake emails from hacked accounts to everyone on their contact list.
Fewer ransomware attacks
Interestingly, the number of reports of ransomware attacks targeting companies has decreased slightly. However, the FOCS notes that several attacks against Swiss companies were carried out by three specific ransomware groups: ‘Akira,’ ‘8Base,’ and ‘Black Basta.’ These attacks affected companies from all sectors, regardless of their size.
In addition to companies, individuals are also being increasingly targeted by ransomware groups, as these attackers are now focusing on "highly profitable victims," according to the FOCS. Ransomware gangs are using increasingly advanced tactics. The ‘Black Basta’ group for example, first sends out mass spam emails and then pretends to be a legitimate support service to trick victims.
Cyber security is a top priority for businesses today, as cyber threats are increasing and becoming more complex than ever. With the damage of these attacks potentially devastating, companies cannot afford to simply be reactive. At Penta, we have worked hard to design and build the most comprehensive suite of IT risk solutions for businesses of all types and sizes. Speak to a consultant today.