Grim reading…Malware is growing, adware mutating, and sophisticated ‘nation state’ tools are being used by low-level hackers
Security specialists Check Point has painted a fairly grim picture of the cyber security landscape in its latest ‘Cyber Attack Trends: Mid-Year‘ report.
It revealed that ransomware attacks have doubled in the first six months of 2017; adware is mutating; and because of leaks, nation-state cyber weapons and exploits are falling into the hands of regular hackers.
The security specialist has also launched a new online platform dubbed ‘Check Point Research’. This platform will provide security specialists with access to Check Point’s cyber threat intelligence insights.
The Check Point report examined the state of the cyber security market from January to June 2017.
It revealed that ransomware attacks in the Americas, Europe, Middle East and Africa (EMEA) was nearly double those detected in the first six months of 2016 – from an average of 26 percent to an average of 48 percent of the three main attack categories worldwide.
“Organisations are struggling to effectively counteract the abundance of threats now in play,” commented Maya Horowitz, Threat Intelligence Group Manager at Check Point. “Hackers are making malware more sophisticated, and so the ability for unskilled hackers to inflict damage has risen dramatically.”
Furthermore, the research found that in the first half of 2017, 23.5 percent of organisations were impacted by the RoughTed malvertising campaign.
Meanwhile 19.7 percent of organisations were impacted by the Fireball malware.
Check Point revealed in June that the Chinese malware dubbed ‘Fireball’ had infected at least 250 million computers worldwide. Once the malware infects a computer (both Windows PCs and Apple Macs) it takes over the machine’s web browser and turns it into a zombie client.
According to Check Point, the Fireball malware led to a major change in the approach to stop adware, especially adware owned by massive, seemingly-legitimate organisations. But the report also found that mobile adware botnets also continue to expand and dominate the mobile malware arena.
And just as security experts have previously warned, the leak and consequent availability of key nation-state hacking tools, zero-day vulnerabilities, exploits and attack methods means that any potential hacker to carry out sophisticated attacks.
The ‘WannaCrypt’ or ‘WannaCry’ ransomware for example is believed to have stemmed from exploit tools stolen from the National Security Agency (NSA) in January by notorious hacker group ‘ShadowBrokers’.
Microsoft President Brad Smith has previously slammed the NSA for the “stockpiling of vulnerabilities”.