The fourth quarter saw notable industry
The Q4 spike in Bitcoin value prompted cybercriminals to focus on cryptocurrency hijacking through a variety of methods, including malicious Android apps. “Collaboration and liberalised information-sharing to improve attack defences remain critically important as defenders work to combat escalating asymmetrical cyberwarfare.Spam campaigns. In Q4 and 2017 overall, malware led disclosed attack vectors, followed by account hijacking, leaks, distributed denial of service, and code injection.Macro malware. New ransomware samples grew 59 per cent over the last four quarters, while new ransomware samples growth rose 35 per cent in Q4. New Mac OS malware samples increased by 24 per cent in Q4.
Attack vectors.8 million samples.Mobile malware. Both health care organizations and developers creating software for their use must be more vigilant in ensuring they are up to date on security best practices. New macro malware increased by 53 per cent in Q4, declined by 35 per cent in 2017. Disclosed incidents rose 46 per cent in 2017, falling 46 per cent in Q4. The scripting language was used within Microsoft Office files to execute the first stage of attacks. Disclosed incidents experienced a surge in 2017, rising 210 per cent while falling 78 per cent in Q4.Asia. New mobile malware decreased by 35 percent from Q3.Health care. 30 per cent of all publicly disclosed security incidents in Q4 took place in the Americas, followed by 14 per cent in Europe and 11 per cent in Asia. “Our research uncovered classic software failures and security issues such as hardcoded embedded passwords, remote code execution, unsigned firmware, and more. McAfee Advanced Threat Research complements McAfee Labs by providing in-depth investigative analysis of cyber attacks from around the globe.“The fourth quarter was defined by rapid cybercriminal adoption of newer tools and schemes—fileless malware, cryptocurrency mining, and steganography.”
Each quarter, McAfee Labs assesses the state of the cyber threat landscape based on threat data gathered by the McAfee Global Threat Intelligence cloud Italy Plugs from hundreds of millions of sensors across multiple threat vectors around the world. In 2017 total mobile malware experienced a 55 per cent increase, while new samples declined by 3 per cent.“Health care is a valuable target for cybercriminals who have set aside ethics in favour of profits,” said Christiaan Beek, McAfee Lead Scientist and Senior Principal Engineer.”Health Care Targeted Although publicly disclosed security incidents targeting health care decreased by 78 per cent in the fourth quarter of 2017, the sector experienced a dramatic 210 per cent overall increase in incidents in 2017. Disclosed incidents rose 16 per cent in 2017, falling 29 per cent in Q4. The total number of malware samples grew 10 per cent in the past four quarters. “It should be no surprise to see criminals focusing on stealthy fileless PowerShell attacks, low-risk routes to cash through cryptocurrency mining, and attacks on soft targets such as hospitals. McAfee researchers discovered Android apps developed exclusively for the purpose of cryptocurrency mining and observed discussions in underground forums suggesting Litecoin as a safer model than Bitcoin, with less chance of exposure.Mac malware.Oceania.Public sector.McAfee Advanced Threat Research analysts looked into possible attack vectors related to health care data, finding exposed sensitive images and vulnerable software.
McAfee Labs saw on average eight new threat samples per second and the increasing use of fileless malware attacks leveraging Microsoft PowerShell.Vertical industry targets. For instance, the spike in the value of Bitcoin prompted actors to branch out from moneymakers such as ransomware to the practice of hijacking Bitcoin and Monero wallets. Disclosed incidents fell 20 per cent in 2017, rising 18 per cent in Q4. Americas. Through their investigations, McAfee Advanced Threat Research analysts conclude many incidents were caused by organizational failure to comply with security best practices or address known vulnerabilities in medical software.“By going digital along with so many other things in our world, crime has become easier to execute, less risky and more lucrative than ever before,” said Steve Grobman, Chief Technology Officer for McAfee. The total number of ransomware samples increased 16 per cent in the last quarter to 14.Security incidents. Total Mac OS malware grew 243 percent in 2017.Regional Targets.”Q4 2017 Threats ActivityFileless malware.Malware overall.Ransomware. The fourth quarter saw notable industry and law enforcement successes against criminals responsible for ransomware campaigns. Public, health care, education, and finance, respectively, led vertical sector security incidents for 2017. Even tried-and-true tactics, such as ransomware campaigns, were leveraged beyond their usual means to create smoke and mirrors to distract defenders from actual attacks,” said Raj Samani, McAfee Fellow and Chief Scientist. Combining these attack vectors, analysts were able to reconstruct patient body parts and print three-dimensional models. Disclosed incidents fell 58 per cent in 2017, rising 28 per cent in Q4. In Q4 JavaScript malware growth continued to slow with new samples decreasing by 9 per cent, while new PowerShell malware more than tripled, growing 267 per cent.
New malware samples increased in Q4 by 32 per cent .Cybercriminals also continued to adopt fileless malware leveraging Microsoft PowerShell, which surged 432 per cent over the course of 2017, as the threat category became a go-to toolbox. Disclosed incidents rose 125 per cent in 2017, remaining stagnant in Q4.Finance.Education.Cybercriminals Take On New Strategies, Tactics The fourth quarter of 2017 saw the rise of newly diversified cybercriminals, as a significant number of actors embraced novel criminal activities to capture new revenue streams. 97 per cent of spam botnet traffic in Q4 was driven by Necurs—recent purveyor of “lonely girl” spam, pump-and-dump stock spam, and Locky ransomware downloaders—and by Gamut—sender of job offer–themed phishing and money mule recruitment emails.(source). Disclosed incidents rose 42 per cent in 2017, falling 33 per cent in Q4.McAfee has released its McAfee Labs Threats Report: March 2018, examining the growth and trends of new malware, ransomware, and other threats in Q4 2017. Disclosed incidents decreased 15 per cent in 2017, down 37 per cent in Q4.Europe. McAfee Labs counted 222 publicly disclosed security incidents in Q4, a decrease of 15 per cent from Q3
برچسب: ،