ANY.RUN’s latest malware trends report reveals substantial increases in threat activity across multiple categories, providing critical intelligence for security professionals as cyber threats continue to evolve at an alarming pace. Stealers have maintained their position as the most prevalent malware type, with 36,043 detections in Q1 2025 – a significant increase from 25,341 in the previous quarter. The comprehensive analysis covers key threats, including prevalent malware families, Advanced Persistent Threats (APTs), phishing kits, and evolving Tactics, Techniques, and Procedures (TTPs). ANY.RUN, a leading cybersecurity firm, has released its Q1 2025 Malware Trends Report, offering critical insights into the dynamic cyber threat landscape. Snake malware also demonstrated remarkable growth, moving from eighth to third place with a 2.3x increase in detections. The comprehensive dataset collected through these sessions offers valuable insights into emerging threat patterns, providing security teams with actionable intelligence to strengthen their defensive postures against increasingly sophisticated attacks. Organizations must remain vigilant by implementing multi-layered security defenses, conducting regular threat hunting, and maintaining comprehensive security awareness programs to counter these evolving threats. Loader malware also demonstrated significant growth with a 49% increase in detections (15,523). These obfuscation tools continue to challenge detection mechanisms, enabling malware to evade traditional security controls and highlighting the need for advanced behavioral analysis capabilities. Among specific malware families, Lumma maintained its top position with a 17.7% increase in detections. Among phishing kits, Tycoon 2FA demonstrated remarkable growth with 21,463 samples (up from 8,785), while EvilProxy secured second place with 4,743 detections. Exploit Public-Facing Application (T1190) emerged as a major new threat vector, rising to third place with 37,579 detections despite not previously ranking in the top 201. The Q1 2025 malware trends report from ANY.RUN paints a picture of an increasingly active and sophisticated threat landscape. The STORM-1747 group maintained its dominant position with 16,140 detections, while TA569 moved into second place with 1,005 instances. Phishing threats showed a concerning 30% increase, with total detections rising from 82,684 to 107,7931.
This Cyber News was published on cybersecuritynews.com. Publication date: Fri, 02 May 2025 12:45:09 +0000