Every year cyber criminals devise new high profile and sophisticated attacks against organizations worldwide. 2017 is no exception: from complex ransomware attacks to large data breaches, it is obvious this year’s cyber-attacks have caused major damage. Below you will find the most prominent cyber security news so far and the lessons they’ve left behind.
More than 200,000 new malware samples were found every day in the first half of 2016 according to the APWG’s (Anti-Phishing Working Group) crime ware statistics. While down slightly compared to 2015, it doesn’t necessarily signal the end of the ransomware/malware/phishing epidemic that has impacted businesses and the public for many years.
In fact, the opposite may be true, at least in highly targeted industries. Analysis of cyberattacks by BrandProtect, reveals that Q3 phishing attacks against banks, insurers, and other financial services enterprises rose 30 percent during Q3 2016 year/year. More significantly, the BrandProtect analysis reveals that while the majority of phishing attacks remains simple in design and execution, the percentage of sophisticated phishing exploits – attacks that automate subjugation of website infrastructure and deploy multiple phishing URLs – has increased dramatically. These sophisticated attacks generate the majority of phishing URLs that must be taken down.
“There is no doubt that sophisticated phishing attacks are becoming the norm,” said Dylan Sachs, Director of Anti-Phishing Services and Incident Response at BrandProtect. “Instead of launching attacks from a single URL, a sophisticated phishing attack will generate and launch attacks from ten, twenty, one hundred, or even more URLs. To put this in perspective, during the third quarter of 2016, just ten percent of the phishing attacks that we detected targeting our clients generated approximately slightly more than fifty percent of the URLs that needed to be taken down.”
Viewpost® Selects BrandProtect™ to Secure Complex Attack Surface
Payments Marketplace Provider Required a Solution With Round-the-Clock Threat Monitoring and Mitigation to Protect Its Customer Information From Beyond the Perimeter Attacks
I just did a mental poll and yes, spam is still one of the most annoying things to receive in your email. These messages may include unsolicited offers for cheap Viagra or requests from a Nigerian Prince requesting your bank account information because he needs help to move a large sum of money and in turn, will repay you with a generous sum of money for your time and effort. There are also phishing attacks emails that try to trick the user by providing them with a link to a spoofed website that looks identical to a financial institution’s website. If you have an email account, chances are good that you have encountered these or similar scenarios. People are becoming more aware of the dangers of engaging with unsolicited emails and stay away, but would you consider a legitimate email from a company as spam?
In December I received a communication from a client asking if I could look into an email that their employees were receiving; claiming to be from the retailer Target regarding the recent financial security breach. Many of the employees were either not sure what to do about the email or claimed to have never shopped at any Target store and were not sure why they were receiving the email in the first place.
You have survived the first half of 2013 while only being hacked 2 times had 3 malware scares, 1 imposter twitter account and a phishing incident. For many of us individual users as well as companies large and small this is the reality of working, playing and socializing on the internet. These turbulent times are a mere glimpse into the future of what is to come and we must ensure that we are proactive, reactive and above all resilient to these threats. But what are these threats and what does the future hold?
The latest Mobile Threats Report by Juniper Networks has thrown some alarming statistics. For instance, while mobile malware across all mobile platforms grew 155% in 2011, between March 2012 and March 2013 that number has escalated to a shocking 614% or 276,259 total malicious apps. There are over 500 third-party app stores containing malicious apps with incredibly low levels of accountability. Want to hear more? 73% of all malware is sending fraudulent premium SMS messages that can charge the unsuspecting user up to $10 every month.