Mar 28, 2018 SOURCE: PR NewsWire

Report: Macro-less Word Document Attacks on the Rise, Zero Day Malware Variants Jump 167 Percent

Report: Macro-less Word Document Attacks on the Rise, Zero Day Malware Variants Jump 167 Percent

WatchGuard Launches Threat Landscape visualization tool for analyzing Firebox Feed data to better understand security threats

SEATTLE, March 28, 2018 /PRNewswire/ -- WatchGuard® Technologies, a leader in advanced network security solutions, today announced new research findings from its Internet Security Report for Q4 2017. Among the report's most notable findings, threat intelligence from Firebox appliances protecting small and midsize businesses (SMBs) and distributed enterprises around the world showed that total malware attacks are up by 33 percent, and that cyber criminals are increasingly leveraging Microsoft Office documents to deliver malicious payloads. WatchGuard has also launched a new Threat Landscape data visualization tool, available for the public to access to daily updates about the most prevalent computer and network security threats affecting SMBs and distributed enterprises.

"After a full year of collecting and analyzing Firebox Feed data, we can clearly see that cyber criminals are continuing to leverage sophisticated, evasive attacks and resourceful malware delivery schemes to steal valuable data," said Corey Nachreiner, chief technology officer at WatchGuard Technologies. "Although these criminal tactics may vary over time, we can be certain that this broad trend will persist, so the risks have never been greater for small and midsize organizations with less IT and security resources. We encourage businesses of all sizes to proactively mitigate these threats with layered security services, advanced malware protection, and employee education and training in security best practices."

WatchGuard's Internet Security Report provides a quarterly update on the most ubiquitous security threats targeting businesses today, as well key strategies they can use to protect employees, customers and stakeholders from data theft. The top takeaways from the Q4 2017 report include:

    --  Cyber criminals leveraged malicious Office documents to trick victims.
        Dynamic Data Exchange (DDE) attacks cracked WatchGuard's top ten malware
        list in Q4, as hackers increasingly exploited issues within this
        Microsoft Office standard to execute code. Also called "macro-less
        malware," these malicious documents often use PowerShell and obfuscated
        script to get past network defenses. Additionally, two of the top-ten
        network attacks in Q4 involved Microsoft Office exploits, further
        emphasizing the growing trend of malicious document attacks.
    --  Overall malware attacks grew significantly, while zero day malware
        variants jumped 167 percent. WatchGuard Fireboxes blocked over 30
        million total malware variants in Q4, which was a 33 percent increase
        over the previous quarter. Out of the total threats prevented in Q4, the
        subset of new or "zero day" malware instances rose steeply by 167
        percent compared to Q3. These increases can likely be attributed to
        heightened criminal activity during the holiday season.
    --  Nearly half of all malware eluded basic antivirus (AV) solutions.
        WatchGuard Fireboxes block malware using both legacy signature-based
        detection techniques and the modern, proactive behavioral detection
        solution - APT Blocker. When APT Blocker catches a malware variant, it
        means the legacy AV signatures missed it. This zero day malware
        accounted for 46 percent of all malware in Q4. That level of growth
        suggests criminals are using more sophisticated evasion techniques
        capable of slipping attacks past traditional AV services, which further
        underscores the importance of behavior-based defenses.
    --  Scripting attacks account for 48 percent of top malware. Script-based
        attacks caught by signatures for JavaScript and Visual Basic Script
        threats, such as downloaders and droppers, accounted for the majority of
        malware detected in Q4. Users should take note of the continued
        popularity of these attacks and watch out for malicious script in web
        pages and email attachments of any kind.

The full Internet Security Report features evaluations of the quarter's most pervasive malware and network attacks, recommendations for useful defensive strategies in today's threat landscape, and a detailed breakdown of "the Krack Attack" - one of the top information security issues in 2017.

Additionally, the report includes a new research project from the WatchGuard Threat Lab, which analyzes a database of more than 1 billion stolen password records to stress just how often users choose weak passwords and re-use credentials across multiple accounts. This quarter's conclusions are based on anonymized Firebox Feed data from nearly 40,000 active WatchGuard Fireboxes worldwide, which blocked more than 30 million malware variants (783 per device) and 6.9 million network attacks (178 per device) in Q4 2017.

New Threat Landscape Data Visualization Tool
WatchGuard's new Threat Landscape data visualization tool offers daily security insights regarding the top malware and network attacks around the globe. The Threat Landscape page enables users to search Firebox Feed data a by type of attack, region or country, and targeted date ranges, with interactive graphics that are updated instantly and easy to read.

For more information, download the full report here. To access live, real-time threat insights by type, region and date, visit WatchGuard's Threat Landscape page today.

About WatchGuard Technologies, Inc.
WatchGuard® Technologies, Inc. is a global leader in network security, secure Wi-Fi, and network intelligence products and services to more than 80,000 customers worldwide. The company's mission is to make enterprise-grade security accessible to companies of all types and sizes through simplicity, making WatchGuard an ideal solution for distributed enterprises and SMBs. WatchGuard is headquartered in Seattle, Washington, with offices throughout North America, Europe, Asia Pacific, and Latin America. To learn more, visit WatchGuard.com.

For additional information, promotions and updates, follow WatchGuard on Twitter, @WatchGuard on Facebook, or on the LinkedIn Company page. Also, visit our InfoSec blog, Secplicity, for real-time information about the latest threats and how to cope with them at www.secplicity.org.

Media Contacts:

Chris Warfield
WatchGuard Technologies
206.876.8380
chris.warfield@watchguard.com

Anthony Cogswell
Voxus PR
253.444.5980
ajcogswell@voxuspr.com

View original content with multimedia:http://www.prnewswire.com/news-releases/report-macro-less-word-document-attacks-on-the-rise-zero-day-malware-variants-jump-167-percent-300620680.html

SOURCE WatchGuard Technologies, Inc.

Related News

Antivirus Software Market to Witness Extensive Growth Owing to Rising Cybercrime & Technological Advancements Across The Globe Till 2023 | Radiant Insights, Inc.

AI helps home users detect and prevent unknown cyber threats

Quttera Announces Latest Enhancements to Website Malware Scanner API

The Future of the Mobile Anti-Malware Market, 2025 - Rising Trend of Using Cloud Storage and IoT Platforms Have Enhanced the Dependency of Users on Smartphones

Secure Thingz supports next-generation Secure Install technologies for IP Protection and malware prevention

AV-Comparatives Announce Best-performing Consumer Antivirus Programs H1 2020

IGEL and Ericom Software Extend Partnership to Protect Endpoints from Web Browser-Based Malware Attacks

Endpoint Security Market Insights, 2020 - Rise in Demand for Integrated Endpoint Security Infrastructure and Software

View all News

Latest Procurements

Work Health and Safety Management System Software

The National Capital Authority are seeking a work health and safety management system (WHSMS) software package.

Industry Briefing April 2024 - Defence Estate Capital Works Program

On 17 April 2024, the 2024 National Defence Strategy and Integrated Investment Program was launched. Defence invites industry to attend a virtual briefing in relation to the Defence estate and...

Community Perceptions Survey

This Approach to Market (ATM) is for the provision of a supplier to manage the communication of the Community Perception Survey

View all Procurementsp

Agenda

June

FranceParc des Expositions de Paris Nord Villepinte ZAC Paris Nord 2, 93420 Villepinte – France (Halls 5a – 5b – 6)

Eurosatory 2024, 17 - 21 June 2024, Parc des Expositions de Paris Nord Villepinte ZAC Paris Nord 2, 93420 Villepinte – France (Halls 5a – 5b – 6)

Eurosatory 2024 There can be no sustainable world without peace and security. Founded in 1967, the exhibition...

May

Paris Marriott Rive Gauche & Conference Center

Future Artillery, 21-23 May 2024, Paris Marriott Rive Gauche & Conference Center, France

DELIVERING FIRES IN THE MULTI-DOMAIN BATTLESPACE As artillery reasserts itself as the ‘King of Battlefield’ in the wake...

May

United Arab EmiratesADNEC (Abu Dhabi National Exhibition Centre), Abu Dhabi, Al Khaleej Al Arabi St - Al Rawdah - Al Ma'arid - Abu Dhabi, UAE

ISNR Abu Dhabi 2024, 21-23 May 2024, ADNEC (Abu Dhabi National Exhibition Centre), Abu Dhabi, Al Khaleej Al Arabi St - Al Rawdah - Al Ma'arid - Abu Dhabi, UAE

ISNR ACCELERATING TRANSFORMATION IN THE NATIONAL SECURITY ECOSYSTEM ISNR Abu Dhabi is the region’s most trusted...

View All Events

Companies

Saeed & Mohammed Al Naboodah Holding LLC

Motion Hellas Ltd.

Łukasiewicz Research Network – Industrial Research Institute for Automation and Measurements PIAP

View All Companies