August 31, 2018
Crypto-mining malware recognitions soared 96% in the first half of 2018 against the whole of last year as cyber-criminals progressively looked to more secret methods of making money, as per Trend Micro.
The safety seller declared in its latest Midyear Security Roundup that it obstructed more than 20 billion dangers in the first half of this year.
Nevertheless, fewer of these are typical “spray and pay” ransomware attacks and breaks, it asserted. Actually, 1H 2018 is the first time since the start of ransomware in 2005 that there has been a drop in new families found.
In its place, attackers are looking to crypto-jacking together with fileless, macro and small file malware methods to fly under the radar.
There was a 956% rise in cryptocurrency malware discoveries against 1H 2017, and a 250% surge in findings of small file malware, TinyPOS, compared to 2H 2017.
The discoveries chime with other research into the danger landscape. Check Point, for instance, warned last month that the number of international companies affected by cryptojacking increased from just below 21% in the second half of 2017 to 42% in 1H 2018, with cyber-criminals making an approximated $2.5bn over the previous six months.
“The fresh alteration in the threat landscape reflects what we’ve observed for years — cyber-criminals will continuously change their tools, tricks, and procedures (TTPs) to improve their contamination rates,” said Bharat Mistry, principal safety planner for Trend Micro.
“This implies once more, business leaders should assess their fortifications to make sure adequate safety is in place to halt the latest and most pressing dangers.”
On the plus side, data break reporting continued fairly steady during the period in spite of the start of the GDPR, however, the number of SCADA weaknesses informed by Trend Micro’s Zero Day Initiative doubled up from 1H 2017.
The company alerted operators of Human Machine Interface (HMI) systems to be on the guard for bugs as threat actors ramp up attacks from just investigation and checking to damaging attacks.
Altogether, the ZDI published more than 600 advisories in the first half of 2018.