Story image

Check Point's latest threat research taken from data you can see in real time

21 Aug 2017

Check Point has taken the latest results from its Cyber Attack Trends: Mid Year Report from data that viewers can see happening right in front of their eyes.

Along with the report, the company has released its new research platform, Check Point Research, which shares information about the threat landscape, trends and original research.

The report found that across APAC, the RoughTed and Fireball malware have been creating havoc at 22.8% and 18% respectively.

APAC also featured the highest rate of infections from the notorious WannaCry malware, accounting for 29% - the highest incident of infections compared to global statistics. The Locky and Cryptowall ransomware both totalled 15% of APAC attacks.

The Zeus malware was behind 40% of banking breaches and 18% were due to Ramnit.

The report notes four major breaches in Asia Pacific this year: In the first, McDonald’s India app McDelivery leaked personal data belonging to 2.2 million customers.

In March, Japanese payment processing provider GMO Payment Gateway leaked personal and financial data from the Tokyo Metropolitan Government and the Japan Housing Finance Agency.

In April, Melbourne IT suffered a massive DDoS attack that took 500,000 websites offline for an hour and a half.

Also in April, a hacker took over Australian-based company Atlassian’s group chat platform HipChat. The hacker was able to steal personal details such as names, emails, hashed passwords and chat room metadata.

The statistics for the global report were also formulated from Check Point’s ThreatCloud World Cyber Threat Map between January and June 2017. The threat map shows live detections of different malware types across the globe, including the originating attack country, target country, and type of malware.

As of this morning, the threat map found that out of 4.1 million breaches so far today, Russia, Italy, USA and Singapore were the top attack countries. Russia, India, Colombia and the USA were the top target countries.

“Organisations are struggling to effectively counteract the abundance of threats now in play. Hackers are making malware more sophisticated, and so the ability for unskilled hackers to inflict damage has risen dramatically,” comments Check Point’s Threat Intelligence Group manager, Maya Horowitz.

Ransomware attacks in EMEA (Europe, Middle East and Africa) have also doubled since this time last year, from an average of 26% to around 48% of the three main attack categories.

Check Point’s research also points to an increase in macro-based downloaders over the past six months. Microsoft Office files can now be exploited without the need for macros.

Two methods include disguised weaponised RTF files and also XML data in PowerPoint presentations.

Mobile malware across APAC covered a range of threats – 63% was classed as ‘other’ while Hummingbad (8%), Hiddad (7%), Lotoor (6%) Ztorg (6%) Bosuoa (5%) and Rootnik (4%) rounded out the rest of the top threats.

Globally, ‘other’ mobile malware accounted for 57% of threats while 10% were identified as Hiddad attacks.

“With all the cyber threats in circulation, many organisations still do not have the right security defences in place, and are focusing on a detection approach rather than implementing a proactive prevention solution that would block the attacks in the first place,” Horowitz concludes.

WhatsApp users warned to change voicemail PINs
Attackers are allegedly gaining access to users’ WhatsApp accounts by using the default voicemail PIN to access voice authentication codes.
Swiss Post asks public to hack its e-voting system
Switzerland’s postal service Swiss Post is inviting keen-eyed security experts and white hats to hack its e-voting system.
Spoofs, forgeries, and impersonations plague inboxes
It pays to double check any email that lands in your inbox, because phishing attacks are so advanced that they can now literally originate from a genuine sender’s account – but those emails are far from genuine.
Flashpoint signs on emt Distribution as APAC partner
"Key use cases that we see greatly benefiting the region are bolstering cybersecurity, combating insider threats, confronting fraud, and addressing supply chain risk, to name a few."
The attack surface: 2019's biggest security threat
As businesses expand, so does their attack surface – and that may be the biggest cybersecurity risk of them all, according to Aon’s 2019 Cyber Security Risk Report.
Opinion: Cybersecurity as a service answer to urgent change
Alan Calder believes a CSaaS model can enable a company to build a cyber resilience strategy in a coherent and consistent manner.
Why SD-WAN is key for expanding businesses - SonicWall
One cost every organisation cannot compromise on is reliable and quick internet connection.
New threat rears its head in new malware report
Check Point’s researchers view Speakup as a significant threat, as it can be used to download and spread any malware.