Phishing and drive-by downloads lead infection methods

The most common infection vectors are still email phishing and drive-by downloads according to the latest threat report from AI security specialist Cylance.

The report provides a real-world glimpse into major cyber threats that affected Cylance’s customer base in 2017. Along with industry trends and analysis, and data from thousands of government entities and organizations of all sizes across 160 countries that have adopted a prevention-first approach to security.

It shows destructive attacks continue to rise with ransomware families leading the pack, growing three-fold during the year and affecting the healthcare industry the most. More than half of 2017's attacks exploited known vulnerabilities reported more than nine months prior to the attack. The food, beverage and restaurant industry suffered the greatest volume of attacks.

The report explores the growth of malware variants and the ease with which they can be deployed. These variants are a challenge for legacy security solutions that rely on signatures to detect threats given their short life span. More than 50 percent of the threats Cylance prevented were not seen in any other environment, further supporting the need for organizations to consider advanced malware detection and prevention technologies.

"Cybercriminals are adept at modifying their malware and methods to stay ahead of traditional protections that organizations deploy, as seen by the rise in infections and sophistication of attacks in 2017," says Rahul Kashyap, worldwide chief technology officer at Cylance. "It's critical that companies are aware of the threats, keep up-to-date with patches, and use defenses that protect against constantly evolving malware."

The report also details the impact of malware on specific industries and looks at specifics on the top 10 malware families which include WannaCry, Locky, Petya, Ramnit and Terdot/Zloader. It discusses other threat trends too, including emerging supply chain attacks, fast-rising ransomware attacks and the top industries affected by them, the growth of crypto-miners, wallet-swiping trojans, plus firmware and hardware vulnerabilities.

You can download a full copy of the Cylance 2017 Threat Report from the company’s site.

Image Credit: wk1003mike / Shutterstock