Cloudflare considers AI and deepfakes a key threat, and brute force is outdated.

Cyber Threats of 2024: Key Findings from Cloudflare

In its annual cybercrime report, Cloudflare notes that the threat landscape is becoming more diverse and dangerous. Hackers are gradually moving away from brute force and embedding malicious actions into legitimate workflows, using artificial intelligence (AI) and cloud services.

1. Active Use of AI* Automation of attacks – neural networks are used to map networks in real time, write exploits, and create deepfakes.

* Effectiveness – phishing emails generated by AI trap users 4.5 times more often than traditional methods.

* Example – a recent incident where fraudsters spoofed a Zoom video conference, posing as the company’s CEO and forcing the victim to install malware.

2. State‑Sponsored Groups* Primary targets: telecommunications companies and third‑party API vulnerabilities.

* Special focus is on attacks via trusted cloud services such as Google Calendar, Dropbox, and GitHub. Threat actors use these platforms to mask their activity, making it less visible to traditional defense systems.

3. Threats to Cryptocurrency Investors* Hackers are actively hunting owners of digital assets:

* Crypto schemes allow funds to be moved through complex transaction chains almost anonymously.

* To bypass multi‑factor authentication, infostealer programs are increasingly used, stealing credentials and cryptographic tokens directly from victims’ devices.

4. Rise in DDoS Attacks* The report records an increase in hyper‑volume but short attacks capable of paralyzing even well‑protected sites.

Conclusion: Cybercriminals are getting smarter, and the proliferation of AI lowers the entry barrier to cyberattacks, enabling complex operations not only by seasoned professionals. Cloudflare urges stronger protection at all levels—from infrastructure to end users.