McAfee: 480 new cyberthreats detected per minute in Q3 2018

Data received : 19-Dec-2018:
Location: Singapore

McAfee today released its Quarterly Threats Report: December 2018. The report examined the evolution of cyber threats in Q3 2018, finding an average of 480 new threats per minute and a sharp increase in malware targeting IoT devices – new IoT device malware grew 73% in Q3 and total IoT malware was up 203% in last four quarters.

Cybercriminals are increasingly innovating their methods to evade detection and increase the effectiveness of their campaigns, weaponising vulnerabilities both new and old. This is supported by new findings analysing popular conversations in the underground that cybercriminals are increasingly looking to learn from successful breaches to fuel their attacks.

Key findings include:
  • Cryptomining malware increases 71%, miners leverage volume of IoT devices
  • New mobile malware decreases 24%, cybercriminals leverage fake game cheats, dating apps
  • Attacks targeting financial sector increase 20%, banking Trojans take uncommon approaches
  • Spam botnets spew “sextortion” scams, threaten to reveal victim web browsing habits
  • New ransomware increases 10% in Q3 2018, unique ransomware families decline
  • Malware led disclosed attack vectors, followed by account hijacking, leaks, unauthorized access, and vulnerabilities. New malware samples increased by 53%. The total number of malware samples grew 33% in the past four quarters.

 McAfee has increasingly observed conversations in hacker forums around the following topics:
  • User credentials: Hacked email accounts are of particular interest to cybercriminals as they are used to restore login credentials for other online services
  • E-commerce Site Malware: Cybercriminals have shifted their focus from point-of-sale systems to payment platforms located on large e-commerce sites
  • RDP: Shops offering logins to computer systems worldwide, ranging from the consumer home to medical devices and government systems, remained popular
  • Ransomware-as-a-service: The number of unique ransomware families has declined since Q4 2017 as partnerships between essential services have increased, for example the partnership between GandCrab ransomware and crypter service NTCrypt seen in Q3