Every year cyber criminals devise new high profile and sophisticated attacks against organizations worldwide. 2017 is no exception: from complex ransomware attacks to large data breaches, it is obvious this year’s cyber-attacks have caused major damage. Below you will find the most prominent cyber security news so far and the lessons they’ve left behind.
Ransomware is now the #1 security concern for organizations
Ransomware is a cyber epidemic that continues to evolve, targeting home users, businesses, and government networks globally. This type of cyberattack blocks access to your computer or network, and holds the information “hostage” until ransom is paid by virtual currency (typically Bitcoins). Ransomware infection methods are no different than “typical” malware - opening email attachments (even from known-senders), or visiting a webpage that surreptitiously installs the code.
The latest cyberattack in history, named “WannaCry”, recently affected more than 400,000 systems in 150 countries including United States, Canada and China (with the largest concentration of computers infected due to unlicensed or outdated versions of Windows), and approximately 4,000 other ransomware attacks have occurred daily since January 2016.
Understand what you need to do to monitor and protect your computer and information from these cyberattacks. This month's BrandProtect Executive Threat Brief provides the best practices to avoid the ransomware epidemic.
BrandProtect Executive Threat Briefs are designed to minimize your exposure by educating you and your team about simple steps you can take to protect your personal information online.
On Friday, May 12 2017 a large scale cyber-attack known as “WannaCry” was launched targeting more than 230,000 computers in 150 countries affecting Britain’s National Health Service (NHS), FedEx, LATAM Airlines and other important companies around the world.This is certainly not the last time we’ll hear about this cyber-attack, here’s what you need to know…
More than 200,000 new malware samples were found every day in the first half of 2016 according to the APWG’s (Anti-Phishing Working Group) crime ware statistics. While down slightly compared to 2015, it doesn’t necessarily signal the end of the ransomware/malware/phishing epidemic that has impacted businesses and the public for many years.
In fact, the opposite may be true, at least in highly targeted industries. Analysis of cyberattacks by BrandProtect, reveals that Q3 phishing attacks against banks, insurers, and other financial services enterprises rose 30 percent during Q3 2016 year/year. More significantly, the BrandProtect analysis reveals that while the majority of phishing attacks remains simple in design and execution, the percentage of sophisticated phishing exploits – attacks that automate subjugation of website infrastructure and deploy multiple phishing URLs – has increased dramatically. These sophisticated attacks generate the majority of phishing URLs that must be taken down.
“There is no doubt that sophisticated phishing attacks are becoming the norm,” said Dylan Sachs, Director of Anti-Phishing Services and Incident Response at BrandProtect. “Instead of launching attacks from a single URL, a sophisticated phishing attack will generate and launch attacks from ten, twenty, one hundred, or even more URLs. To put this in perspective, during the third quarter of 2016, just ten percent of the phishing attacks that we detected targeting our clients generated approximately slightly more than fifty percent of the URLs that needed to be taken down.”