IoT Malware, Encrypted Threats, Web App Attacks Dramatic Jump dramatically in Q3

SonicaWall releases new threat intelligence data

7,444

SonicWall today released new threat intelligence data revealing 7.2 billion malware attacks were launched in the first three quarters of 2019 as well as 151.9 million ransomware attacks, marking 15% and 5% year-over-year declines, respectively.

Key findings include:

  • IoT malware jumped to 25 million, a staggering 33% increase
  • Encrypted threats spiked 58% through the first three quarters
  • Web app attacks are on the rise, showing a 37% increase over the same period last year
  • Malware volume reaches 7.2 billion, a 15% year-over-year drop
  • Ransomware attacks reaches 151.9 million, a 5% year-over-year decrease
  • 14% of malware attacks came over non-standard ports

While attacks may be trending down currently, the reality is the number of attacks is still very high and more nefarious than ever, even evading traditional sandbox technology. The SonicWall Capture Threat Network has recorded an increase in targeted geographic attacks beyond the United States to include the United Kingdom and Germany. SonicWall Capture Labs threat researchers are also analysing new and growing attack vectors, such as side-channel attacks and evasion.

“When we observe how ransomware spreads, we also identify that ransomware tactics have changed,” said SonicWall President and CEO Bill Conner.

“Historically, the goal for most malware authors was quantity of infections and now we’re seeing attackers focus on fewer higher-value targets where they can spread laterally. This shift in tactics has also seen a corresponding rise in the ransom demands, as attackers attempt to make more money from fewer, but higher value, targets like local municipalities and hospitals.”

Phishing attacks are following suit with ransomware and malware, and are also trending down globally with a year-to-date decrease of 32%, a number that has held steady for most of the year. Similar to ransomware, the attacks are being more targeted towards c-suite executives, HR personnel and IT leaders.

While an average of 14% of malware came across non-standard ports through three quarters, attacks across the vector have grown in both the second (20%) and third quarters (17%). SonicWall’s non-standard port data is based on a sample size of more than 275 million malware attacks recorded worldwide through September 2019.

“What the data shows is that cybercriminals are becoming more nuanced, more targeted and savvier in their attacks. Businesses need to align to create stricter security rules within their organisations to reduce the threats that our researchers are identifying,” said Conner.

“We recommend that companies deploy a unified and layered security approach that provides real-time protection across all networks so that they don’t find themselves front page news for a data breach.”

Rapid Mobile uses cookies, tokens, and other third party scripts to recognise visitors of our sites and services, remember your settings and privacy choices, and - depending on your settings and privacy choices - enable us and some key partners to collect information about you so that we can improve our services and deliver relevant ads.

 

By continuing to use our site or clicking Agree, you agree that Rapid Mobile and our key partners may collect data and use cookies for personalised ads and other purposes, as described more fully in our privacy policy.

 

You can change your settings at any time by clicking Manage Settings or by visiting our Privacy Centre for more detailed information.

 

Privacy Settings saved!
Cookie Services

When you visit any website, it may store or retrieve information on your browser, mostly in the form of cookies. Because we respect your right to privacy, you can choose not to allow some types of cookies. Click on the different category headings to find out more and change our default settings. However, blocking some types of cookies may impact your experience of the site and the services we are able to offer.

These cookies are necessary for the website to function and enable essential services and functonality, including identify verification, service continuity and site security. Opt out is not availabe.

Essential Session management cookies for logged in users
  • wordpress_test_cookie
  • wordpress_logged_in_
  • wordpress_sec

For perfomance reasons we use Cloudflare as a CDN network. This saves a cookie "__cfduid" to apply security settings on a per-client basis. This cookie is strictly necessary for Cloudflare's security features and cannot be turned off.
  • __cfduid

Used by Spamshield to stop spam signups
  • _wpss_h_
  • _wpss_p_

NewsWire Service
  • BIGipServerwidget2_www_http

Decline all Services
Accept all Services