Ransomware detections dropped by almost half, but the threat is only getting worse, says Trend Micro

Relatively than indicating ransomware was a passing fad, the lower in assault quantity exhibits that attackers are beginning to develop into extra opportunistic and smarter about choosing targets.


Picture: kaptnali, Getty Photographs/iStockphoto

Pattern Micro has launched a midyear cybersecurity report that makes two fascinating claims: First, that ransomware numbers decreased by nearly half in H1 2021 in comparison with H1 2020; and second, that the variety of newly reported vulnerabilities decreased, with a very giant dip within the variety of crucial flaws being reported. 

Do not let that idiot you into complacency: Not like the 1H 2021 drop in COVID-themed phishing assaults that Pattern Micro seen, the dips talked about above do not point out that something has run its course; as a substitute, it signifies altering techniques. 

SEE: Safety incident response coverage (TechRepublic Premium)

Within the case of vulnerabilities, the drop in experiences confirmed a disconnect with the variety of vulnerabilities being exploited within the wild. The primary six months of 2021, Pattern Micro stated, “had been marked with vital vulnerability exploitation incidents, such because the ProxyLogon assaults,” which was the important thing exploit behind the Microsoft Alternate server assaults. As well as, Pattern Micro famous, Home windows and Linux each proceed to be stricken by identified and new vulnerabilities. 

Exploit information is not the most important scare to come back out of the midyear report: Ransomware information needs to be the massive concern, and exactly as a result of the variety of assaults are lowering. That lower, Pattern Micro stated, is as a result of “attackers are shifting from the opportunistic and quantity-focused mannequin to extra focused fashionable ransomware strategies and big-game looking.”

Pattern Micro divides ransomware into two varieties within the report: Premodern and fashionable ransomware, each of which it stated had been among the many high 10 most detected threats within the first half of 2021. Premodern ransomware is the sort that drops the malicious code instantly from an electronic mail or dangerous URL, whereas fashionable ransomware makes use of phishing and different exploits to drop ransomware instantly onto a machine or community that has been compromised. For example, Pattern Micro cites WannaCry as premodern and ransomware like DarkSide, REvil and Nefilim as fashionable variants. 

Standard ransomware targets within the first half of 2021 included banking, authorities, manufacturing, healthcare, meals and beverage, training, tech, finance, telecom and retail sectors.  

Ransomware: Nonetheless not the most-detected risk

If ransomware actors are to be feared as a result of they’re starting to get smarter about focusing on, then cryptocurrency mining malware is the risk due to its sheer quantity. Within the first half of 2021, cryptomining malware, which mines cryptocurrency utilizing computing sources it has contaminated with out notifying the person, changed WannaCry as essentially the most prevalent risk household on the web.

“Cybercriminals proceed to lift the stakes for the enterprises and organizations that they aim, as they launch assaults from all angles,” Pattern Micro stated. How does a corporation defend itself from assaults coming from all angles? 

“Contemplating the various kinds of malicious threats and the variety of lively cybercriminal teams, it’s critical that organizations set up a sturdy and multilayered safety system. Now greater than ever, siloed instruments and single layers of safety that solely cowl components of the general infrastructure aren’t a enough protection in opposition to the superior cybercriminal campaigns being launched,” Pattern Micro concluded within the report.

SEE: How you can handle passwords: Finest practices and safety ideas (free PDF) (TechRepublic)

For IT, “optimum safety options ought to present indicators and analytics that give IT safety groups a complete view of dangers to their group’s system with out inundating them with mountains of alerts and pointless information,” the report stated. 

Do not forget to incorporate staff on safety coaching both, Pattern Micro warns. “Atypical customers are crucial components of the safety posture, as they’re typically used to achieve deeper entry into organizations. [They] needs to be educated on present social engineering techniques, as staying knowledgeable and alert on the most recent threats will assist shut that entry level for attackers.”

Additionally see

Recent Articles


Related Stories

Leave A Reply

Please enter your comment!
Please enter your name here

Stay on op - Ge the daily news in your inbox