Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Malware & Threats

Malware Distribution Peaked on Fridays During Q3 2015: Report

Cybercriminals intensified the distribution of malware on Fridays during the third quarter of 2015, the latest CYREN Cyber Threat Report reveals.

Cybercriminals intensified the distribution of malware on Fridays during the third quarter of 2015, the latest CYREN Cyber Threat Report reveals.

According to the security firm, an average of 2.25 billion malware attachments detected on Fridays shows that attackers were seeking to take advantage of employees being less protected over the weekend. The trend also resulted in IT professionals having to deal with more threats on Monday mornings.

The report (PDF) validates the theory that many breaches and threats appear on a corporate networks appear on Monday mornings, as employees are more likely to download unsafe content on Saturdays and Sundays, as they are often using unprotected networks on those days. Employees taking their devices home over the weekend use them for Web surfing, downloading, and for opening links received over email, increasing overall risk of compromise.

The study also revealed that 4.3 million phishing URLs were tracked in the third quarter of the year, marking a 19 percent decrease when compared to the July report. According to CYREN, this decrease marks a normalization in the number of such attacks, despite the 30 percent increase observed during the second quarter of the year.

During Q3, the security firm also observed a major phishing scam targeting corporate and government email credentials, including corporate names, email addresses, passwords, and phone numbers. To trick their victims, attackers used spoofed images from known and reputable cloud services, including LinkedIn, Apple, and Amazon, and the security researchers believe that the campaign might be part of a long-term threat process in which criminals are looking to amass corporate login data.

The report also suggests that 6.25 percent of all installed Android applications are malicious, while revealing that 655,000 new variants were discovered in Q3. According to CYREN, 7 of the top 10 types of Android malware are adware related, while the other three are SMS Trojans.

Spam emails decreased during the third quarter of the year to an average of 52 billion per day, and CYREN also said that the average number of daily spam emails that it detected during September was 47.4 billion, which represents a six-year low.

Advertisement. Scroll to continue reading.

“These latest malware and phishing findings come on the heels of Cyber Security Awareness Month as well as a fresh CYREN survey that underscores just how difficult it is for the average user to identify a threat. Now, more than ever before, both individuals and enterprises should embrace cyber security awareness. Organizations must arm employees with knowledge of the vast, ever-changing tricks used by criminals,” Lior Kohavi, CTO at CYREN said.

Written By

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Cybercrime

The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.

Cybercrime

A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...

Malware & Threats

The NSA and FBI warn that a Chinese state-sponsored APT called BlackTech is hacking into network edge devices and using firmware implants to silently...

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Cyberwarfare

An engineer recruited by intelligence services reportedly used a water pump to deliver Stuxnet, which reportedly cost $1-2 billion to develop.

Malware & Threats

Unpatched and unprotected VMware ESXi servers worldwide have been targeted in a ransomware attack exploiting a vulnerability patched in 2021.

Malware & Threats

Apple’s cat-and-mouse struggles with zero-day exploits on its flagship iOS platform is showing no signs of slowing down.

Cybercrime

No one combatting cybercrime knows everything, but everyone in the battle has some intelligence to contribute to the larger knowledge base.