Trend Micro Incorporated, a global leader in cybersecurity solutions, today published its roundup report for the first half of 2019, revealing a surge in fileless attacks designed to disguise malicious activity. Detections of this threat alone were up 265% compared to the first half of 2018. In Middle East and North Africa (MENA), the United Arab Emirates (UAE) saw the highest number of malicious URLs accessed by people in-country (4,269,043), and the second-highest number of malware threats detected (893,908), based on data from Trend Micro.
The findings in 2019 so far confirm many of the predictions that Trend Micro made last year. Namely, attackers are working smarter to target businesses and environments that will produce the greatest return on investment.
“Sophistication and stealth is the name of the cybersecurity game today, as corporate technology and criminal attacks become more connected and smarter,” said Fabio Picoli, managing director – Gulf Cooperation Council (GCC), Trend Micro.
“From attackers, we saw intentional, targeted, and crafty attacks that stealthily take advantage of people, processes and technology. However, on the business side, digital transformation and cloud migrations are expanding and evolving the corporate attack surface. To navigate this evolution, businesses need a technology partner that can combine human expertise with advanced security technologies to better detect, correlate, respond to, and remediate threats.”
Along with the growth in fileless threats in the first half of the year, attackers are increasingly deploying threats that aren’t visible to traditional security filters, as they can be executed in a system’s memory, reside in the registry, or abuse legitimate tools. Exploit kits have also made a comeback, with a 136% increase compared to the same time in 2018. Exploit kits that Trend Micro detected in the GCC totaled 6,506 in the first half of 2019, led by 5,742 in the UAE and 378 in Saudi Arabia.
Cryptomining malware remained the most detected threat in the first half of 2019, with attackers increasingly deploying these threats on servers and in cloud environments. Substantiating another prediction, the number of routers involved in possible inbound attacks jumped 64% compared to the first half of 2018, with more Mirai variants searching for exposed devices. In the first half of 2019, Trend Micro blocked 893,908 malware threats and 2,142 banking malware threats in the UAE. Both numbers were second in MENA to Saudi Arabia, where Trend Micro blocked 976,508 malware threats and 2,416 banking malware threats.
Additionally, digital extortion schemes soared by 319% from the second half of 2018, which aligns with previous projections. Business email compromise (BEC) remains a major threat, with detections jumping 52% compared to the past six months. Ransomware-related files, emails and URLs also grew 77% over the same period.
During the same period, Trend Micro blocked 13,928,015 email threats and 4,269,043 attempts by people living in the UAE accessing malicious URLs (highest in MENA). In comparison, in Saudi Arabia, Trend Micro blocked 65,175,007 email threats (highest in MENA) and 2,337,074 malicious URL attempts (second-highest in MENA).
In total, Trend Micro blocked more than 26.8 billion threats in the first half of 2019, over 6 billion more than the same period last year. Of note, 91% of these threats entered the corporate network via email. Mitigating these advanced threats requires smart defense-in-depth that can correlate data from across gateways, networks, servers and endpoints to best identify and stop attacks.
To read the complete report, Evasive Threats, Pervasive Effects: 2019 Midyear Security Roundup, please visit report.
Trend Micro Incorporated is a global leader in cybersecurity solutions.