Cybercriminals intensified the distribution of malware on Fridays during the third quarter of 2015, the latest CYREN Cyber Threat Report reveals.
According to the security firm, an average of 2.25 billion malware attachments detected on Fridays shows that attackers were seeking to take advantage of employees being less protected over the weekend. The trend also resulted in IT professionals having to deal with more threats on Monday mornings.
The report (PDF) validates the theory that many breaches and threats appear on a corporate networks appear on Monday mornings, as employees are more likely to download unsafe content on Saturdays and Sundays, as they are often using unprotected networks on those days. Employees taking their devices home over the weekend use them for Web surfing, downloading, and for opening links received over email, increasing overall risk of compromise.
The study also revealed that 4.3 million phishing URLs were tracked in the third quarter of the year, marking a 19 percent decrease when compared to the July report. According to CYREN, this decrease marks a normalization in the number of such attacks, despite the 30 percent increase observed during the second quarter of the year.
During Q3, the security firm also observed a major phishing scam targeting corporate and government email credentials, including corporate names, email addresses, passwords, and phone numbers. To trick their victims, attackers used spoofed images from known and reputable cloud services, including LinkedIn, Apple, and Amazon, and the security researchers believe that the campaign might be part of a long-term threat process in which criminals are looking to amass corporate login data.
The report also suggests that 6.25 percent of all installed Android applications are malicious, while revealing that 655,000 new variants were discovered in Q3. According to CYREN, 7 of the top 10 types of Android malware are adware related, while the other three are SMS Trojans.
Spam emails decreased during the third quarter of the year to an average of 52 billion per day, and CYREN also said that the average number of daily spam emails that it detected during September was 47.4 billion, which represents a six-year low.
“These latest malware and phishing findings come on the heels of Cyber Security Awareness Month as well as a fresh CYREN survey that underscores just how difficult it is for the average user to identify a threat. Now, more than ever before, both individuals and enterprises should embrace cyber security awareness. Organizations must arm employees with knowledge of the vast, ever-changing tricks used by criminals,” Lior Kohavi, CTO at CYREN said.
More from SecurityWeek News
- Threat Hunting Summit Virtual Event NOW LIVE
- Video: ESG – CISO’s Guide to an Emerging Risk Cornerstone
- Threat Modeling Firm IriusRisk Raises $29 Million
- SentinelOne Announces $100 Million Venture Fund
- Today: 2022 CISO Forum Virtual Event
- Cymulate Closes $70M Series D Funding Round
- SecurityWeek to Host CISO Forum Virtually September 13-14, 2022: Registration is Open
- Privilege Escalation Flaw Haunts VMware Tools
Latest News
- In Other News: AI Regulation, Layoffs, US Aerospace Attacks, Post-Quantum Encryption
- Blackpoint Raises $190 Million to Help MSPs Combat Cyber Threats
- Google Introduces SAIF, a Framework for Secure AI Development and Use
- ‘Asylum Ambuscade’ Group Hit Thousands in Cybercrime, Espionage Campaigns
- Evidence Suggests Ransomware Group Knew About MOVEit Zero-Day Since 2021
- SaaS Ransomware Attack Hit Sharepoint Online Without Using a Compromised Endpoint
- Google Cloud Now Offering $1 Million Cryptomining Protection
- Democrats and Republicans Are Skeptical of US Spying Practices, an AP-NORC Poll Finds
