Eskenzi PR ad banner Eskenzi PR ad banner
  • About Us
Wednesday, 7 June, 2023
IT Security Guru
Eskenzi PR banner
  • Home
  • Features
  • Insight
  • Events
    • Most Inspiring Women in Cyber 2022
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
  • Home
  • Features
  • Insight
  • Events
    • Most Inspiring Women in Cyber 2022
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
IT Security Guru
No Result
View All Result

The start of 2017 witnessed a 5,000-fold decrease in the world's largest spam botnet mailings

by The Gurus
May 4, 2017
in Editor's News
Share on FacebookShare on Twitter

According to Kaspersky Lab’s “Spam and phishing in Q1 2017” report, the world’s largest spam botnet, Necurs, demonstrated a relative decline in its fraudulent mailshot traffic. In December 2016, Kaspersky Lab’s spam traps detected over 35 million fraudulent mailshots but in March 2017 that number fell to almost 7,000.
The Kaspersky Lab spam report also identified the following trends in the first quarter of 2017:

  • Global share of spam amounted to almost 56 per cent of Q1 email traffic on average, compared to 59.9 per cent in Q4 2016
  • Total amount of malware attachments in email traffic decreased by 2.4 times, compared to the previous quarter
  • More than half of all phishing attacks targeted the financial sector, including banks (almost 26 per cent), payment systems (over 13 per cent) and online shops (almost 11 per cent).

The fall of the Necurs botnet
In 2016, Kaspersky Lab researchers identified a sharp increase in spam with malicious attachments, primarily with encryptors. Most of this traffic came from the Necurs botnet, which is currently considered the world’s largest spam botnet. However, at the end of December 2016, the network practically stopped, and not just for the Christmas holidays. The botnet’s spam was at a very low level for almost the entire first quarter of 2017.
Apparently, criminals were scared by increased hype around the encryptors and decided to suspend mass mailings. However, this decision is unlikely to result in the extinction of this attack vector.
Malicious emails with password-protected files
In the first quarter of 2017 spammers tended to complicate their anti-detection techniques in multiple ways. Among others, cybercriminals packed the malware in password-protected files. Once a user received the email, spammers provoked victims to open and archive in the usual way. They forged emails under order notifications from large retail stores, through various transactions and CVs, or promised large sums of money. Frequently, the emails were sent on behalf of various existing small and medium-sized businesses, with all of the signatures and contacts proving the reliability of the sender.
Once a victim opened the documents, a malicious script was activated and downloaded malware onto computers. The malware payloads were diverse and included ransomware, spyware, backdoors, or a new modification of the notorious Zeus Trojan.
Spam through legal services
Modern email spam filters effectively cope with the problem of detecting spam sent via emails. This provokes spammers to look for new channels to bypass the barriers. They are increasingly focusing on messengers and social networks to disseminate their advertising and fraudulent offers.
Private messages are usually supported with notifications to the recipient’s email. In this case, the email headers will be considered legitimate, unlike traditional email spam. This means that it will be possible to detect spam only by analysis of the message content. This is a much more difficult task, especially given the legal source of information and if the service address is added to the recipient’s trusted list.
“Spam, the cyber version of junk mail has been a nuisance since the first email was sent. Whilst it’s gratifying to see that it is less of a problem than in the past – at least for now – small and medium sized businesses cannot allow themselves to be complacent.
“For a criminal to send spam to thousands of email addresses is relatively simple and cost efficient. Moreover, email is still predominantly used by companies of all sizes daily to communicate and do business. This means that it still poses a risk. Though it is an old adversary and many businesses have filters already set up, spam is now being used in new ways that make it just as potent as ever and able to avoid detection. As the statistics show, criminals are now using spam to deliver more damaging payloads like malware and ransomware or be a vehicle for phishing attacks. Criminals are innovative and constantly seek ways to avoid detection and de-fraud email users.
“At Kaspersky Lab we work with our partners to arm and educate their customers to tackle the problem of spam botnets and the new threats associated with them. Just because technology is advancing and the threat landscape is evolving, does not mean that older generational threats have disappeared,” said Russ Madley, Head of B2B at Kaspersky Lab UK.
Home users are recommended to use a security solution able to recognise and block malicious attachments and filter spam in desktop email apps, such as Kaspersky Total Security.
Kaspersky Lab recommends that businesses use security solutions with a dedicated functionality aimed at malicious attachments and spam. Small businesses can protect themselves with Kaspersky Small Office Security, which spots and blocks emails with spam. Larger companies can benefit from real-time cloud-assisted anti-spam scanning of all messages on Microsoft® Exchange and Linux-based email servers — with the Kaspersky Security for Mail Server application included with Kaspersky Total Security for Business.
Read more about spam and phishing in early 2017 on Securelist.com

FacebookTweetLinkedIn
Tags: CybersecurityTechnology
ShareTweet
Previous Post

Data security and privacy remain the biggest concerns about retail apps

Next Post

(ISC)2 and Learning Tree to Embed Cybersecurity Certifications within Global Public/Private Sector Training Programmes

Recent News

Standard post, logos of brands, headshot.

J Brand: The Challenges of Putting Mental Health First in an Unfamiliar Industry

June 6, 2023
iPad with Anxiety written on it in capitals.

Half of UK Employees Suffer From “Sunday Scaries”

June 6, 2023
UK Organisations lack clear path to achieve threat intelligence

UK Organisations lack clear path to achieve threat intelligence

June 6, 2023
A Roadmap for Becoming a Penetration Tester in 2023

A Roadmap for Becoming a Penetration Tester in 2023

May 31, 2023

The IT Security Guru offers a daily news digest of all the best breaking IT security news stories first thing in the morning! Rather than you having to trawl through all the news feeds to find out what’s cooking, you can quickly get everything you need from this site!

Our Address: 10 London Mews, London, W2 1HY

Follow Us

© 2015 - 2019 IT Security Guru - Website Managed by Calm Logic

  • About Us
No Result
View All Result
  • Home
  • Features
  • Insight
  • Events
    • Most Inspiring Women in Cyber 2022
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us

© 2015 - 2019 IT Security Guru - Website Managed by Calm Logic

This site uses functional cookies and external scripts to improve your experience.

Privacy settings

Privacy Settings / PENDING

This site uses functional cookies and external scripts to improve your experience. Which cookies and scripts are used and how they impact your visit is specified on the left. You may change your settings at any time. Your choices will not impact your visit.

NOTE: These settings will only apply to the browser and device you are currently using.

GDPR Compliance

Powered by Cookie Information