Kaspersky Lab was one in 2016 702 million attacks by exploits, so malware exploiting existing software error to infect devices with other malicious software such as bank Trojans or ransomware. Towards 2015, representing an increase of 24,54 percent. At that time the protection solutions from Kaspersky Lab about 563 million of such efforts had averted, as the company has now announced. The growing use of exploits is one of the most important findings of the Kaspersky trial “attacks with exploits: from everyday threats to targeted campaigns” . The study was based on anonymous data of the Kaspersky Security Network (KSN) on the threat that is published in the last six years intelligence reports from Kaspersky Lab, as well as publicly available information.
attacks with the help of exploits are security experts particularly effective, because they can require generally no activity of the user and without arousing suspicion, placing malicious software. Corresponding attacks are both carried out by cyber criminals, aiming to steal money or information from consumers or businesses, as well as actors who stand behind sophisticated and targeted attacks. Specifically in the Division 28.35 percent were attacked according to Kaspersky Lab last year more corporate users of exploits than in the previous year. The total number rose to over 690,000, which corresponds to 15,76% of all users attacked in 2016 by exploits.
browser are most Windows, exploit “Stuxnet” (CVE-2010-2568) remains at the top. So every fourth of all users attacked at all of an exploit was 2016 according to the security experts in contact. “and Office exploits attacks. 69.8% of all users involved in 2016 from exploit attacks, the attack referred to one of these applications. Considering the number of affected users the inglorious
all over the world considered more than 297.000 users were attacked in 2016 by unknown exploits (zero-day exploits or already known exploits that were heavily veiled). This corresponds to an increase of just under 7 percent from 2015. The market price of yet unknown exploits can be up to several thousand dollars. They are used generally in the course of sophisticated attacks on high-level targets.
all targeted cyber attacks and campaigns, Kaspersky Lab has reported from 2010 to 2016, more than 80 vulnerabilities used collectively. Two-thirds of which have been exploited by more than one attacker. Increasingly organizations directed against the attacks
Although more and more attacks are based on exploits and is, the number of home users affected by exploits by 20 percent fell. She fell from 5.4 million in the year 2015 to 4.3 million in the year 2016. A possible reason: 2016, there were fewer sources for exploits than in the previous year. So are various large and popular exploit Kit such as neutrino and in the course of the last year gone fishing according to Kaspersky of the underground market. Some groups Cyberkrimineller have lost apparently the opportunity to spread their malware. Another reason is according to the researchers, in faster response times, the software provider after the discovery of new vulnerabilities. Thus it has become far more expensive for cyber criminals, to develop an effective exploit Kit that can be deployed as long as until it has recorded its costs again. But, this does not apply to attacks on companies. “
“our detection statistics as well as the monitoring of the activities of actors who stand behind targeted attacks, show us that professional groups in the area of Cyberspionage have funds and skills to develop and spread advanced exploits. A current example of this is the involuntary release of defective tools, which was allegedly used by the equation group”therefore Alexander Liskin, security evangelist at Kaspersky Lab warns. “That doesn’t mean that it would be impossible to protect organizations against exploit attacks. To ward off the harmful attacks, we recommend especially enterprises established Cybersicherheitslösungen to put on, to effectively secure computers, mobile devices, and networks.”
to protect against exploit-based attacks on home and business users, Kaspersky Lab’s experts advise to keep the software installed on the PC up to date and if possible to use an auto-update feature.
software providers responsible handling vulnerabilities problems, should be preferred whenever possible, for example, if you operate a separate Bug Bounty program.
multiple, interconnected PC manages, a solution for patch management should be used. So can the software of all endpoints centrally and controls are updated. The IT infrastructure in the company should undergo regular security checks (security assessments).
Kaspersky Lab recommends to inform employees, for example, by means of training courses about the dangers, because with this method to open a kompromittiertes document or a similar link to follow victims often causes through social engineering.
also security solutions should be protection (AEP) such as, for example, the automatic exploit Kaspersky, who possess special mechanisms to exploit ward or at least about behavior-based detection technologies.
get to know the building blocks of enterprise cloud platform in this audio Webinar. Learn how to achieve maximum freedom and flexibility for your applications. More outcome achieved with less input – specific application examples.