As we enter 2024, ransomware remains the most significant cyberthreat facing businesses, according to Malwarebytes.
Malwarebytes reveals that the United States accounted for almost half of all ransomware attacks in 2023.
Alongside the rise of ransomware attacks in 2023, the average ransom demand also climbed significantly.
The LockBit gang was responsible for the largest known demand, $80 million, following an attack on Royal Mail.
Ransomware groups also evolved their tactics, getting scrappier and more sophisticated to target a higher volume of targets at the same time.
The CL0P ransomware gang broke established norms with a series of short, automated campaigns, hitting hundreds of unsuspecting targets simultaneously with attacks based on zero-day exploits.
Malware spreads through convincing brand impersonations.
Malicious advertising - or malvertising - also made a comeback in 2023 and threatened both businesses and consumers alike.
Countless campaigns appeared impersonating brands such as Amazon, Zoom and WebEx to deliver both Windows and Mac malware through highly convincing ads and websites that trick users into downloading malware on their devices.
Malwarebytes ThreatDown Labs found Amazon, Rufus, Weebly, NotePad++ and Trading View to be the top five most impersonated brands.
Dropbox, Discord, 4sync, Gitlab and Google emerged as the top five most abused hosts.
Malwarebytes ThreatDown Labs also found Aurora Stealer, Vidar, Redline Stealer, BatLoader and IcedID to be the top five most frequently discovered malware.
In addition to ransomware and malvertising trends, Malwarebytes ThreatDown Labs found attacks on Android, Mac and Windows devices also evolved.
Mawarebytes ThreatDown Labs detected Android banking trojans 88,500 times in 2023.
In these attacks, Banking trojans are disguised as regular apps like QR code scanners, fitness trackers, or even copies of popular applications like Instagram to copy banking passwords and steal money directly from accounts.
Malware accounted for 11% of detections on Macs last year.
Despite declining PC sales, demand for Macs has grown.
Today Macs represent a 31% share of US desktop operating systems, while a quarter of businesses run Macs somewhere on their networks making Apple's macOS an increasingly significant target for malicious actors.
Abuse of Windows Management Instrumentation was the top technique for Living Off the Land cyberattacks.
In these attacks, criminals carry out malicious activities using legitimate IT administration tools like WMI or Powershell.
This Cyber News was published on www.helpnetsecurity.com. Publication date: Mon, 12 Feb 2024 05:43:04 +0000