Malicious scripts declined as an attack vector by 11% in Q3 after dropping by 41% in Q2. Threat actors pivot from using script-based attacks and increasingly employ other living-off-the-land techniques. When factoring in the Medusa detections, ransomware attacks rose 89% quarter over quarter. Yet the Medusa ransomware variant, which emerged in the Top 10 malware threats for the first time, was detected with a generic signature from the Threat Lab’s automated signature engine. On the surface, endpoint ransomware detections appeared down in Q3. Medusa ransomware variant surges in Q3, driving endpoint ransomware attacks to increase 89%. For instance, in researching the top phishing domains, the Threat Lab observed a tech support scam that would result in a victim downloading a pre-configured, unauthorised version of TeamViewer, which would allow an attacker full remote access to their computer. Threat actors increasingly use remote management tools and software to evade anti-malware detection, which both the FBI and CISA have acknowledged. It’s important for organisations to provide social engineering education as well as adopt a unified security approach that provides layers of defense, which can be administered effectively by managed service providers,” added Nachreiner. But when it comes to attacks that employ social engineering tactics, the end user becomes the last line of defense between malicious actors and their success in infiltrating an organization. “Modern security platforms that include firewalls and endpoint protection software can deliver enhanced protection for networks and devices. “Threat actors continue using different tools and methods in their attack campaigns, making it critical for organizations to keep abreast of the latest tactics to fortify their security strategy,” said Corey Nachreiner, chief security officer at WatchGuard. Cybercriminals still prefer targeting open remote access products, or like to leverage legitimate remote access tools to hide their malicious actions, according to WatchGuard.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |