Security Market Segment LS
Wednesday, 14 June 2017 02:08

Mobile malware on the increase, says Fortinet

By
Mobile malware on the increase, says Fortinet Image courtesy of Stuart Miles at FreeDigitalPhotos.net

A new report on the global threats posed by cyber attacks has found that the prevalence of mobile malware remained steady from the fourth quarter 2016 to the first quarter of this year, with about 20% of organisations detecting the malware.

According to the latest report from Fortinet, more Android “malware families made the top 10 list by volume or prevalence this quarter.

And Fortinet says regional mobile malware prevalence rose in every region except the Middle East.

The security firm says the rate of growth was statistically significant in all cases rather than simply random variation and compared to some other regional threat comparisons, Android malware appeared to have stronger geographic tendencies.

On industry sectors, Fortinet says cluster analysis by vertical industry shows that the attack surface across most industries was the same with a few exceptions such as the education and telco sectors.

“This means that adversaries can easily exploit similar attack surfaces across industries more easily, especially with automated tools,” Fortinet says.

In Asia Pacific, the exploit trends show similarities to global and other regions’ trends.

For example, the top exploit detected in all regions are related to the 2014 Shellshock bug and both globally and in APAC, the majority of malware infections are tied to ransomware droppers such as Nemucod, Fortinet says.

“Lastly, the top botnet activity globally is related to Andromeda, and the same is observed in APAC. As highlighted earlier, the Internet is not bound by geographic distances and boundaries, so most threat trends appear more global than regional.”

“In the past year, highly-publicised cyber security incidents have raised public awareness of how our TVs and phones can be manipulated to deny others Internet availability, and have shown that demanding ransom is being used to disrupt vital patient care services,” says Jon McGettigan, senior director, APAC and the Pacific Islands, Fortinet.

“Yet, awareness alone isn’t enough. Unfortunately, as organisations increasingly adopt convenience and cost-savings IT techniques, such as cloud services, or add a variety of smart devices to their network, visibility and control of their security is at risk.

“Meanwhile, attackers are buying or re-using tools of their own. Cyber security strategies need to increasingly adopt trustworthy network segmentation and high degrees of automation to prevent and detect adversaries’ efforts to target the newly-exposed flanks of our businesses and governments.”

According to Fortinet, its research reveals that while more high-profile attacks have dominated the headlines, the reality is that the majority of threats faced by most organisations are opportunistic in nature fuelled by a “pervasive crime-as-a-service infrastructure”.

Fortinet says modern tools and crime-as-a-service infrastructures enable adversaries to operate on a global scale at “light speed”.

As a result, the Internet seems not interested in geographic distances or boundaries because most threat trends appear more global than regional. Adversaries are always on the attack, looking for the element of surprise whenever possible on an international scale.

"Understanding exploit trends or how ransomware works and spreads, the better we can avoid the impact caused by the next WannaCry. The malicious ransomware and its variants achieved great scale with hundreds of organisations affected across the world at once.”

Fortinet also says that just under 10% of organisations detected activity associated with ransomware and, on any given day, an average of 1.2% dealt with ransomware botnets running somewhere in their environment.

“The peak days of activity fell on weekends, with the hope of slipping traffic past weekend security operations staff. As the average traffic volume of various ransomware botnets increased, the average number of firms impacted by them rose as well.”

And Fortinet says 80% of organisations reported high or critical-severity exploits against their systems.

“The majority of these targeted vulnerabilities were released in the last five years, but no shortage of attempts was made against premillennial CVEs. Exploit distribution was pretty consistent across geographical regions, likely because a huge proportion of exploit activity is fully automated via tools that methodically scan wide swathes of the Internet probing for opportunistic openings.”


BACK TO HOME PAGE

NEW OFFER - ITWIRE LAUNCHES PROMOTIONAL NEWS & CONTENT

Recently iTWire remodelled and relaunched how we approach "Sponsored Content" and this is now referred to as "Promotional News and Content”.

This repositioning of our promotional stories has come about due to customer focus groups and their feedback from PR firms, bloggers and advertising firms.

Your Promotional story will be prominently displayed on the Home Page.

We will also provide you with a second post that will be displayed on every page on the right hand side for at least 6 weeks and also it will appear for 4 weeks in the newsletter every day that goes to 75,000 readers twice daily.

POST YOUR NEWS ON ITWIRE NOW!

INVITE DENODO EXECUTIVE VIRTUAL ROUNDTABLE 9/7/20 1:30 PM AEST

CLOUD ADOPTION AND CHALLENGES

Denodo, the leader in data virtualisation, has announced a debate-style three-part Experts Roundtable Series, with the first event to be hosted in the APAC region.

The round table will feature high-level executives and thought leaders from some of the region’s most influential organisations.

They will debate the latest trends in cloud adoption and technologies altering the data management industry.

The debate will centre on the recently-published Denodo 2020 Global Cloud Survey.

To discover more and register for the event, please click the button below.

REGISTER HERE!

BACK TO HOME PAGE
Peter Dinham

Peter Dinham - retired and is a "volunteer" writer for iTWire. He is a veteran journalist and corporate communications consultant. He has worked as a journalist in all forms of media – newspapers/magazines, radio, television, press agency and now, online – including with the Canberra Times, The Examiner (Tasmania), the ABC and AAP-Reuters. As a freelance journalist he also had articles published in Australian and overseas magazines. He worked in the corporate communications/public relations sector, in-house with an airline, and as a senior executive in Australia of the world’s largest communications consultancy, Burson-Marsteller. He also ran his own communications consultancy and was a co-founder in Australia of the global photographic agency, the Image Bank (now Getty Images).

BACK TO HOME PAGE

ZOOM WEBINARS & ONLINE EVENTS

Channel News

VENDOR NEWS & VIEWS

REVIEWS

Comments

Guest Opinion