The Qbot Trojan overtook Emotet as the most prevalent malware discovered in the wild in December 2022, affecting 7% of organizations worldwide. Additionally, his Glupteba malware, a blockchain-enabled Trojan botnet, has returned to the Top 10 list for the first time. After July 2022.
The findings are Check Point Software Technologyits publications Global Threat Index on Friday, December 2022 Information security on mail.
“Google managed to figure out the cause, Big Confusion To Grupteva It appears to have resumed activity after starting operations in December 2021,” reads the report. “As a variant of modular malware, […] Botnets are often used as downloaders and droppers for other malware. “
Another malware that saw increased adoption in December 2022 was the Android threat serving ads. Hidadentered the top three mobile malware list for the first time in 2022, just before the end of the year.
“We repackage legitimate apps and release them to third-party stores,” wrote Check Point. “Its main function is to display ads, but it can also access key security details built into the OS.”
In terms of industries, education/research was the most hit sector globally last month, followed by government/military and healthcare.
The most exploited vulnerabilities in December 2022 are: Public GitHub repository information was at the top of the list, followed by various vulnerabilities that exploit directory traversal flaws in various web servers (and was number one will be added to this list in November 2022).
According to Maya Horowitz, vice president of research at Check Point Software, the overwhelming theme of the company’s latest research is that malware can masquerade as legitimate software to give hackers unsuspecting backdoor access to devices. It’s a way of allowing.
“That’s why it’s important to exercise great caution when downloading software or applications or clicking on links, whether they look real or not,” Horowitz added.
up to date Global Threat Index Products by Check Point Software Now Available at this link For more information on the latest active threats in the wild, visit .
The data came days after security researcher Dominic Alvieri New phishing campaign announced It relies on social media accounts and fake websites to pretend to sell the hacking tool Flipper Zero.
