The number of internet users that have been attacked by malicious crypto currency mining software has increased from 1.9 million to 2.7 million in just one year. Statistics for the last 24 months show that miners are increasingly focused on developing markets, and are taking advantage of internet users in these regions to grow their revenues. This is one of the key findings in Kaspersky Lab’s annual ransomware and malicious crypto miners report, 2016-2018.

 

The report, which covers two similar periods (April to March 2016-2017 and April to March 2017-2018), shows that while ransomware can provide cybercriminals with potentially large but one-off rewards in a turbulent landscape, miners might make less money out of their victims, but through a more sustainable/ longer-term model. This is naturally gaining popularity among the cybercriminal community.

 

Kaspersky Lab experts have detected a significant change in the cyberthreat landscape: PC and mobile ransomware attacks on unique users dropped dramatically in 2017-2018 (by almost 30% and 22.5% respectively). Cybercriminals are instead opting to make their money out of crypto currency miners – specialized “mining” software which creates a new currency unit (or coin) by using the computing power of the victim PC and mobile devices. Malicious miners do so at the expense of other users, capitalizing on the power of their computers and devices without their knowledge.

 

According to the report, PC crypto miners are steadily growing. The total number of users who encountered this form of mining rose from 1,899,236 in 2016-2017, to 2,735,611 in 2017-2018.

 

Mobile crypto miners are also emerging as a threat, with unique attacks growing by 9.5%. Overall, this form of mining targeted almost 5,000 users in 2017-2018, compared to around 4,500 users in 2016-2017. Mobile users in China and India are particularly victimized by this threat.

 

“The reasons behind these changes in the cyberthreat landscape are clear. For cybercriminals, ransomware is a noisy and risky way of making money; it attracts media and state attention. The mining model however, is easier to activate and more stable – you attack your victims, discreetly build crypto currency using their CPU or GPU power, and then transfer that into real money through legal exchanges and transactions,” notes Anton Ivanov, security expert at Kaspersky Lab”.

 

Other key findings from the report include:

  • The total number of users who encountered ransomware fell by almost 30%, from 2,581,026 in 2016-2017 to 1,811,937 in 2017-2018;
  • The proportion of users who encountered ransomware at least once out of the total number of users who encountered malware fell by around 1 percentage point, from 3.88% in 2016-2017 to 2.80% in 2017-2018;
  • Among those who encountered ransomware, the proportion who encountered cryptors fell by around 3 percentage points, from 44.6% in 2016-2017 to 41.5% in 2017-2018;
  • The number of users attacked with cryptors almost halved, from 1,152,299 in 2016-2017 to 751,606 in 2017-2018;
  • The number of users attacked with mobile ransomware fell by 22.5% from 130,232 in 2016-2017 to 100,868 in 2017-2018;
  • The total number of users who encountered miners rose by almost 44.5% from 1,899,236 in 2016-2017 to 2,735,611 in 2017-2018;
  • The share of miners detected, from the overall number of threats detected, also grew from almost 3% in 2016-2017 to over 4% in 2017-2018;
  • The share of miners detected, from overall risk tool detections, is also on the rise – from over 5% in 2016-2017 to almost 8% in 2017-2018;
  • The total number of users who encountered mobile miners also grew – but at a steadier pace, growing by 9.5% from 4,505 in 2016-2017 to 4,931 in 2017-2018.

 

To reduce the risk of infection with ransomware and miners, users are advised to:

  1. Treat email attachments, or messages from people you don’t know, with caution. If in doubt, don’t open it.
  2. Back up data regularly.
  3. Always keep software updated on all the devices you use. To prevent miners and ransomware from exploiting vulnerabilities, use tools that can automatically detect vulnerabilities and download and install patches.
  4. For personal devices, use a reliable consumer security solution and remember to keep key features – such as System Watcher – switched on.
  5. If you’re a business, enhance your preferred third party security solution with newest version of Kaspersky Anti-Ransomware Tool.
  6. For superior protection use an endpoint security solution that is powered by behavior detection and able to roll back malicious actions.
  7. Don’t overlook less obvious targets, such as queue management systems, POS terminals, and even vending machines. As the miner that relied on the EternalBlue exploit shows, such equipment can also be hijacked to mine cryptocurrency.
  8. Use application control to track malicious activity in legitimate applications. Specialized devices should be in Default Deny mode. Use dedicated security solution, such as Kaspersky Endpoint Security for Business that includes these functions.
  9. To protect the corporate environment, educate your employees and IT teams, keep sensitive data separate, restrict access, and always back up everything.
  10.  Last, but not least, remember that ransomware is a criminal offence. You shouldn’t pay. If you become a victim, report it to your local law enforcement agency.

 

Check out the No Ransom website for the latest decryptors, ransomware removal tools, and information about ransomware protection.

 

Read the full version of the report on Securelist.com.


RECOMMENDED ARTICLE FOR TECHWORLD


 
Get into the Christmas Vibe with IEP x Transcend DrivePro Raffle
Techworld Date Posted: 15 December 2017 10:37 AM | 116 Views
To share the honor of being recognized as one of Taiwan's Top 20 Global Brands for over ten consecutive years, Transcend cooperates with Taiwan Excellence’s IEP to hold a Christmas raffle with BIG prizes.... See More
 
Get into the Christmas Vibe with IEP x Transcend DrivePro Raffle
Techworld Date Posted: 10:37 AM | 116 Views
To share the honor of being recognized as one of Taiwan's Top 20 Global Brands for over ten consecutive years, Transcend cooperates with Taiwan Excellence’s IEP to hold a Christmas raffle with BIG prizes...See More

 
MSI GAMING PH ANNOUNCES OFFICIAL LAUNCH OF NEW CONCEPT STORE
Techworld Date Posted: 10 November 2017 10:36 AM | 159 Views
Micro-star International (MSI), the world’s best-selling gaming laptop brand, will be having a grand launching celebration of their newest MSI Concept Store on November 16, 2017.. See More
 
MSI GAMING PH ANNOUNCES OFFICIAL LAUNCH OF NEW CONCEPT STORE
Techworld Date Posted: 10:36 AM | 159 Views
Micro-star International (MSI), the world’s best-selling gaming laptop brand, will be having a grand launching celebration of their newest MSI Concept Store on November 16, 2017.See More

 
HMD Introduces Five New Nokia Phones
Techworld Date Posted: 27 February 2018 4:42 PM | 100 Views
HMD Global, the home of Nokia phones, announced four new additions to its award-winning portfolio of Android smartphones – Nokia 8 Sirocco, Nokia 7 Plus, new Nokia 6 and Nokia 1.. See More
 
HMD Introduces Five New Nokia Phones
Techworld Date Posted: 4:42 PM | 100 Views
HMD Global, the home of Nokia phones, announced four new additions to its award-winning portfolio of Android smartphones – Nokia 8 Sirocco, Nokia 7 Plus, new Nokia 6 and Nokia 1.See More

 
DJI Introduces Customer Loyalty Program for Ronin 3-Axis Stabilized Handheld Gimbal System
Techworld Date Posted: 18 September 2017 10:10 AM | 112 Views
DJI, the world's leader in creative camera technology, today announced a global customer loyalty program, rewarding long-time creative professionals who use its Ronin three-axis camera stabilizer and are ready to take their camera operating.... See More
 
DJI Introduces Customer Loyalty Program for Ronin 3-Axis Stabilized Handheld Gimbal System
Techworld Date Posted: 10:10 AM | 112 Views
DJI, the world's leader in creative camera technology, today announced a global customer loyalty program, rewarding long-time creative professionals who use its Ronin three-axis camera stabilizer and are ready to take their camera operating...See More

 
ZooPark: New Android-Based Malware Campaign Spreading through Compromised Legitimate Websites
Techworld Date Posted: 16 May 2018 11:31 AM | 384 Views
Kaspersky Lab researchers have discovered ZooPark, a sophisticated cyberespionage campaign, which for several years has been targeting users of Android devices based in several Middle Eastern countries.. See More
 
ZooPark: New Android-Based Malware Campaign Spreading through Compromised Legitimate Websites
Techworld Date Posted: 11:31 AM | 384 Views
Kaspersky Lab researchers have discovered ZooPark, a sophisticated cyberespionage campaign, which for several years has been targeting users of Android devices based in several Middle Eastern countries.See More

 
Lenovo Officially Kicks off Highly-Anticipated Legion of Champions Series II Grand Finale
Techworld Date Posted: 27 January 2018 1:20 PM | 219 Views
Lenovo (HKSE: 992) (ADR: LNVGY), the world’s leading PC manufacturer, has officially kicked off the “Legion of Champions Series II” Grand Finale (LoC; former League of Champions).. See More
 
Lenovo Officially Kicks off Highly-Anticipated Legion of Champions Series II Grand Finale
Techworld Date Posted: 1:20 PM | 219 Views
Lenovo (HKSE: 992) (ADR: LNVGY), the world’s leading PC manufacturer, has officially kicked off the “Legion of Champions Series II” Grand Finale (LoC; former League of Champions).See More

 
Kaspersky Lab Reports on Resurgent Threat Actor Targeting South China Sea Area
Techworld Date Posted: 14 July 2017 1:06 PM | 168 Views
In early 2017, Kaspersky Lab researchers noted increased activity by an APT called Spring Dragon (also known as LotusBlossom). The attacks involved new and evolved tools and techniques and targeted countries around the South.... See More
 
Kaspersky Lab Reports on Resurgent Threat Actor Targeting South China Sea Area
Techworld Date Posted: 1:06 PM | 168 Views
In early 2017, Kaspersky Lab researchers noted increased activity by an APT called Spring Dragon (also known as LotusBlossom). The attacks involved new and evolved tools and techniques and targeted countries around the South...See More

 
Bitcoin Stealers Are Back: Hunt for Users’ Cryptosavings Continues
Techworld Date Posted: 17 November 2017 8:40 AM | 183 Views
Kaspersky Lab researchers have discovered a new malware which steals cryptocurrencies from a user’s wallet by replacing their address with its own in the device’s clipboard. Criminals are targeting popular cryptocurrencies such as Bitcoin,.... See More
 
Bitcoin Stealers Are Back: Hunt for Users’ Cryptosavings Continues
Techworld Date Posted: 8:40 AM | 183 Views
Kaspersky Lab researchers have discovered a new malware which steals cryptocurrencies from a user’s wallet by replacing their address with its own in the device’s clipboard. Criminals are targeting popular cryptocurrencies such as Bitcoin,...See More

 
System Integration Expo Sets the Stage for High-Tech Innovations
Techworld Date Posted: 9 July 2018 1:18 PM | 88 Views
The 12th largest population in the world, and also arguably one of the most tech-savvy around, the Philippines offers a multitude of opportunities for tech companies and investors. For the past decade or so,.... See More
 
System Integration Expo Sets the Stage for High-Tech Innovations
Techworld Date Posted: 1:18 PM | 88 Views
The 12th largest population in the world, and also arguably one of the most tech-savvy around, the Philippines offers a multitude of opportunities for tech companies and investors. For the past decade or so,...See More

 
Silence Trojan: The New Russian-Speaking Hacking Group Hunts for Financial Organizations
Techworld Date Posted: 6 November 2017 4:02 PM | 152 Views
In September 2017 Kaspersky Lab researchers identified a new series of targeted attacks against at least 10 financial organizations in multiple regions including Russia, Armenia, and Malaysia. The hits are being performed by a.... See More
 
Silence Trojan: The New Russian-Speaking Hacking Group Hunts for Financial Organizations
Techworld Date Posted: 4:02 PM | 152 Views
In September 2017 Kaspersky Lab researchers identified a new series of targeted attacks against at least 10 financial organizations in multiple regions including Russia, Armenia, and Malaysia. The hits are being performed by a...See More


Power by

Download Free AZ | Free Wordpress Themes