Story image

Android ransomware on the rise in APAC - Malwarebytes

10 Apr 18

Android ransomware is the cyber threat which has increased the most, rising by 1173% from Q4 2017 in Asia Pacific to the first quarter of 2018.

However, machine learning anomaly detections also rose by 480%, according to a Malwarebytes report on cybercrime tactics and techniques.

While spyware detections in Asia Pacific fell by 33%, this form of malware saw the biggest increase globally (56%), emerging as the number one detection for businesses in the first quarter of 2018.

Cryptomining malware detections might have fallen in this region (-51%), but it saw a global increase (27%) as well.

Meanwhile, ransomware detections globally and in this region increased at the same rate (28%), while the proportion of the increase in adware detections globally (14%) was higher than in Asia (5%).

This global increasing trend of spyware detections has been spearheaded by TrickBot, a malware which includes a cryptocurrency miner code, giving spyware creators a slice of the lucrative malicious cryptomining pie.

As spyware creators look to leverage the computing power of as many devices as possible, the threat posed by TrickBot to both small and large organisations is rising, especially with more businesses having their employees’ personal mobile devices connected to the company network.

Malwarebytes says that unmanaged crypto miners on employees’ mobile devices could disrupt business or infrastructure-critical processes by overloading systems to the point where they become unresponsive and shut down.

Malwarebytes' new offering aims to approach this problem.

“Malwarebytes Endpoint Protection and Response has been designed to protect businesses across every stage of an attack,” says Malwarebytes A/NZ channel director Vikas Uberoy.

“Of particular interest for our channel partners is our unique rollback technology, which winds back the clock up to 48 hours, negating the impact of ransomware with just-in-time backups prior to infection. This will ensure partners and resellers have access to the most advanced offering in the market to take to small and mid-sized Australian businesses, many of whom are often lacking the manpower or expertise to appropriately manage endpoint security.”

Disruption in the supply chain: Why IT resilience is a collective responsibility
"A truly resilient organisation will invest in building strong relationships while the sun shines so they can draw on goodwill when it rains."
Businesses too slow on attack detection – CrowdStrike
The 2018 CrowdStrike Services Cyber Intrusion Casebook reveals IR strategies, lessons learned, and trends derived from more than 200 cases.
What disaster recovery will look like in 2019
“With nearly half of all businesses experiencing an unrecoverable data event in the last three years, current backup solutions are no longer fit for purpose."
Proofpoint launches feature to identify most targeted users
“One of the largest security industry misconceptions is that most cyberattacks target top executives and management.”
McAfee named Leader in Magic Quadrant an eighth time
The company has been once again named as a Leader in the Gartner Magic Quadrant for Security Information and Event Management.
Symantec and Fortinet partner for integration
The partnership will deliver essential security controls across endpoint, network, and cloud environments.
Is Supermicro innocent? 3rd party test finds no malicious hardware
One of the larger scandals within IT circles took place this year with Bloomberg firing shots at Supermicro - now Supermicro is firing back.
25% of malicious emails still make it through to recipients
Popular email security programmes may fail to detect as much as 25% of all emails with malicious or dangerous attachments, a study from Mimecast says.