sb-au logo
Story image

Microsoft releases latest edition of Security Endpoints Threats report

17 Jun 2020

Microsoft has released findings from the latest edition of its Security Endpoint Threats report, detailing the key cybersecurity trends for 2019 in the Asia Pacific (APAC) region.

The latest iteration of the report sheds more light on the difference in exposure and response to cyber threats between developed and developing countries in the region, and highlights the most common and effective methods of attack experienced across APAC.

Malware and ransomware thrive in APAC

Especially in developing markets in the Asia Pacific region, malware and ransomware remain significant challenges. Countries like Indonesia, Sri Lanka, India and Vietnam continue to experience an encounter rate for malware and ransomware approximately 1.7 times higher than the rest of the world, according to the report.

This is despite a 23 and 29% overall decline across these two threat vectors when compared to the 2018 findings. 

On the other hand, threat encounter rates for malware and ransomware in Japan, New Zealand and Australia were three to six times lower than the regional average. 

“Often, high malware encounters correlate with both piracy rates and overall cyber hygiene, that includes regular patching and updating of software. Countries that have higher piracy rates and lower cyber hygiene tend to be more severely impacted by cyber threats,” says Microsoft Asia assistant general counsel for the Digital Crimes Unit Mary Jo Schrade.

“Patching, using legitimate software, and keeping it updated can decrease the likelihood of malware and ransomware infections.

“Cybercriminals do not stand still. We are witnessing attackers pivoting away from conventional methods, and shifting towards customised campaigns, targeted at specific geographies, industries, and businesses. 

“By relying on cloud technology and developing a comprehensive cyber resilience strategy, organisations can effectively bolster their cybersecurity strategies.”

Developing countries see rise in cryptocurrency mining 

India, Indonesia and Sri Lanka have recorded the highest cryptocurrency mining attack encounters in Asia last year, according to the report. 

These kinds of attacks target victims who attempt to mine currency, infecting their computers with mining malware. 

This method of breach remains popular for attackers looking to make quick money, according to Schrade.

“Cybercriminals are usually incentivised by quick financial gains. We believe that the recent fluctuations in the value of cryptocurrency and the increased time required to generate it, has perhaps led to them focusing on other forms of cybercrime,” says Schrade.

Drive-by download attacks level out

These attacks involve downloading malicious code onto an unsuspecting user’s computer when they visit a website or fill up a form. The malicious code that is downloaded is then used by an attacker to steal passwords or financial information.

Volume for these attacks in APAC has converged with the rest of the world at 0.08%, following a 27% decline from 2018. 

Despite the general decline in drive-by download attacks across the region, the study found that regional business hubs, Singapore and Hong Kong, recorded the highest attack volume in 2019, over 3 times the regional and global average. 

“We usually see cybercriminals launch such attacks to steal financial information or intellectual property,” adds Schrade.

“This is a likely reason why regional financial hubs recorded the highest volume of such threats.

“The high attack volume in these markets may not necessarily translate into a high infection rate, perhaps due to their good cyber hygiene practices and use of genuine software.” 

Story image
How to stay ahead of the next cyber breach
With so many people working from home, the corresponding surge in app usage, unmanaged devices, web traffic and accessing internal resources is making security a much trickier prospect.More
Story image
ExtraHop reveals methods used by attackers in SUNBURST breach
The network detection and response company says between late March and early October 2020, detections of probable malicious activity increased by approximately 150%, including detections of lateral movement, privilege escalation and command and control beaconing.More
Story image
CyberCX and AustCyber launch platform to boost Aus cybersecurity industry
"Australia has some of the best cyber talent in the world, but we need to expand the supply of talent coming through the pipeline if we are to have a vibrant and globally competitive economy."More
Story image
2021's Most Wanted: Emotet continues reign as top malware threat 
The Emotet trojan continues to reign as top malware in January, despite international law enforcement taking control of its infrastructure.More
Story image
Palo Alto Networks adds more incentives to NextWave partner program
This latest launch brings a significant set of enhancements, incentives and training to the company’s NextWave Partner Program.More
Story image
Kaseya acquires RocketCyber to bring SOC solutions to more businesses
"With this acquisition, we've doubled down on our security investments to provide our customers with access to experts who can continuously monitoring their IT environments without the cost and complexity of disparate tools.”More