Cybersecurity News in Asia

Features
- Featured
  
  AI vulnerability testing: Knowing the In’s and Out’s of proper red teaming
  
  Monday, April 22, 2024, 4:40 PM Asia/Singapore | Case Study, Features
- Featured
  
  What businesses need to know about SEO poisoning
  
  Tuesday, April 16, 2024, 4:55 PM Asia/Singapore | Features
- Featured
  
  Immutable data critical to AI projects and cyber resilience
  
  Thursday, April 11, 2024, 11:46 AM Asia/Singapore | Data Protection, Features
News
- Featured
  
  How medical devices manufacturer Tuttnauer protects patient and personal-data safety
  
  Tuesday, April 23, 2024, 5:22 PM Asia/Singapore | Case Study, News
- Featured
  
  How much of automated internet traffic contains malicious activity?
  
  Monday, April 22, 2024, 9:02 AM Asia/Singapore | Cyberthreat Landscape, News, Newsletter
- Featured
  
  Large language models have their strengths and weaknesses: analysis
  
  Monday, April 22, 2024, 8:56 AM Asia/Singapore | News
Opinions
Tips
Whitepapers
Awards 2024
Directory
E-Learning

News

April’s most wanted malware: think ‘US pipeline attack’

By CybersecAsia editors and webmaster webmaster | Tuesday, May 18, 2021, 12:02 PM Asia/Singapore

The word-association shows that ransomware and insufficient government cybersecurity efforts add up to an omnipotent international threat.

For April 2021, the Dridex trojan has reclaimed its spot at the top of Check Point Research’s (CPR) Global Threat Index.

AgentTesla now ranks second (for the first time), while Trickbot hovers at third place.

Dridex trojan is often used as the initial infection stage in ransomware operations, which had risen by a reported 57% in March this year, and is continuing to spike.

The most recent ransomware victim was major US fuel company Colonial Pipeline. The cybercriminals behind the attack—DarkSide—had claimed they did not intend to intend to create problems for society but were only after the money. “We do not participate in geopolitics, do not need to tie us with a defined government and look for… our motives,” the group reportedly announced, ending off with a veiled hint that they would “introduce moderation … to avoid social consequences in the future.”

More government action needed

Said Maya Horowitz, Director, Threat Intelligence & Research, Products, Check Point: “On average every 10 seconds globally, an organization becomes a victim of ransomware. Recently there have been calls for governments to do more about this growing threat, but it is showing no signs of slowing down.”

According to Horowitz, all organizations need to be aware of the risks and ensure adequate anti-ransomware solutions are in place. “Comprehensive training for all employees is also crucial, so they are equipped with the skills needed to identify the types of malicious emails that spread Dridex and other malwares, as this is how many ransomware exploits start.”

Top malware families

This month, Dridex trojan is still the most popular malware with a global impact of 15% of organisations, followed by Agent Tesla and Trickbot impacting 12% and 8% of organisations worldwide respectively.

Dridex
Agent Tesla
Trickbot

Top exploited vulnerabilities

Web Server Exposed Git Repository Information Disclosure
HTTP Headers Remote Code Execution (CVE-2020-10826,CVE-2020-10827,CVE-2020-10828,CVE-2020-13756)
MVPower DVR Remote Code Execution

Top mobile malwares

xHelper
Triada
Hiddad

Leave a reply Cancel reply

You must be logged in to post a comment.

Voters-draw/RCA-Sponsors

CybersecAsia Voting Placement

Gamification listing or Participate Now

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

Secure Access Service Edge (SASE) Solutions for Today’s Work-From-Anywhere (WFA) Environment
Organizations are turning to Secure Access Service Edge (SASE) solutions for securing remote work environments, …Download Whitepaper
Identity Has Breached the Ecosystem
This whitepaper explores the dual nature of identity in cybersecurity, emphasizing its role in both …Download Whitepaper
Fortanix Buyers Guide for Modern Key Management and Data Security
This document underscores the pressing challenges in key management and data securityDownload Whitepaper
Fortanix Data Risk Management – Using Tokenization to Secure Your Data
In today's digital world, organizations prioritize data security. To protect sensitive information, they use tokenization, …Download Whitepaper

Middle-sidebar-banner

Case Studies

How medical devices manufacturer Tuttnauer protects patient and personal-data safety
In running a cloud-based portal to link its smart medical equipment, the firm has also …Read more
AI vulnerability testing: Knowing the In’s and Out’s of proper red teaming
To test the safety/security of a generative AI feature, what unchartered bugs and human testing …Read more
Real estate logistics provider GLP steps up to zero trust architecture
With its physical and digital footprint growing, the global firm’s outdated legacy security stack has …Read more
Identity security woes now a thing of the past for Heng Leong Hang
The retail chain was grappling with numerous cyber risks in its IT infrastructure until it …Read more

Cybersecurity News in Asia

Featured

AI vulnerability testing: Knowing the In’s and Out’s of proper red teaming

Featured

What businesses need to know about SEO poisoning

Featured

Immutable data critical to AI projects and cyber resilience

Featured

How medical devices manufacturer Tuttnauer protects patient and personal-data safety

Featured

How much of automated internet traffic contains malicious activity?

Featured

Large language models have their strengths and weaknesses: analysis

April’s most wanted malware: think ‘US pipeline attack’

More government action needed

Related Posts

Leave a reply Cancel reply

Voters-draw/RCA-Sponsors

CybersecAsia Voting Placement

Gamification listing or Participate Now

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

Middle-sidebar-banner

Case Studies

Bottom sidebar