Malware Trends and Tactics: 3 Things Companies Need To Do

1

Gary Warner, Malcovery’s Chief Technologist, recently presented findings from our 2015 Q2 Malware Trends and Tactics report. The second quarter is notable for the diversity of campaigns that were observed. It’s clear that there are more actors in the space, and many are experimenting with various crime tools in a variety of short-lived campaigns.

Malcovery produced 540 reports during the second quarter related to email-based malware and phishing attacks. In each case, Malcovery’s analyst team dissected the campaign to uncover how it was designed to penetrate your network perimeter. Every report contains a confirmed set of domains, hosts, and artifacts associated with the campaign. Given the variety of payload malware and downloaded applications observed and the number of new hosts and domains supporting the malware attack, it is more important than ever to act quickly on indicators provided by threat intelligence services.

There are 3 things that companies need to do based on this analysis.

  • Automate consumption of threat intelligence.
  • Beware of Microsoft Office attachments.
  • Review how your team is using third party file sharing services.