WatchGuard Threat Lab Analysis Shows Surge in Evasive>
Globe Newswire – WatchGuard Technologies, Inc
WatchGuard Technologies, a global leader in unified cybersecurity, has released its latest Internet Security Report detailing the top malware trends and network and endpoint security threats analyzed by WatchGuard Threat Lab researchers
The report, featuring data from Q4 2023, highlights several key findings:
Evasive, basic, and encrypted malware increased in Q4, leading to an 80% rise in average malware detections per Firebox compared to the previous quarter
TLS and zero-day malware instances also increased, with 55% of malware arriving over encrypted connections and 60% of all malware detections being zero-day
Two of the top 5 most-widespread malware variants, JS.Agent.USF and Trojan.GenericKD.67408266, redirect users to malicious links and attempt to load DarkGate malware on the victim’s computer
There was a resurgence in script-based threats and browser-based exploits, with PowerShell being the top attack vector used by hackers on endpoints
Four of the top 5 most-widespread network attacks targeted Exchange servers, associated with ProxyLogon, ProxyShell, and ProxyNotShell exploits
Cyberattack commoditization continues, with Glupteba and GuLoader being among the top 10 most prevalent endpoint malware in Q4
Ransomware detections declined by 20% compared to the previous quarter, possibly due to law enforcement’s ongoing takedown efforts of ransomware extortion groups
The report emphasizes the need for organizations to adopt a defense-in-depth approach, update systems and software, and consider modern security platforms operated by managed service providers to combat the latest threats effectively.
Link: https://www.globenewswire.com/news-release/2024/03/27/2852882/0/en/WatchGuard-Threat-Lab-Analysis-Shows-Surge-in-Evasive-Malware-Supercharging-an-Already-Powerful-Threat-Wave.html