There has been a rise of reemerging vulnerabilities, such as malvertising, zero-day vulnerability exploitation, “old-school” macro malware and the decade-old FREAK vulnerability, according to Trend Micro Incorporated’s quarterly threat roundup report for the first quarter of 2015.
Titled “Bad Ads and Zero-Days: Reemerging Threats Challenge Trust in Supply Chains and Best Practices”, the quarterly report showcased a combination of newer and older threat variations that defined the cyber security landscape.
From an industry perspective, healthcare and retail point-of-sale systems have also seen an uptick in threat activity. Reflecting on the first three months of the year, the findings reinforce how complacency can present major cybersecurity risks in an era where the margin for error has been significantly diminished.
“This year is shaping up to be noteworthy in terms of volume, ingenuity and sophistication of attacks, and it is clear that businesses and individuals alike need to be proactive in protecting themselves against threats,” said Dhanya Thakkar, Managing Director, Trend Micro Asia Pacific. “With the resurgence of older vulnerabilities, it could very well be that cybercriminals are taking advantage of lack of user awareness. Thus, businesses and organisations need to accept the fact that breaches are inevitable. This mindset shift and then translate to moving from a reactive to a proactive approach towards cybersecurity.”
Trend Micro researchers found zero-day exploits targeting Adobe software utilized malvertisements and no longer required victims to visit or interact with malicious sites to become infected. Advertising-related threats this quarter also included Superfish, a preinstalled bloatware in laptops that had the capability to alter search results (displayed as images) based on users’ browsing histories. Not only did it behave like adware but it also allowed cybercriminals to snoop in on supposedly secure communications.
Adware also topped the list of mobile threats, with Trend Micro now documenting more than five million Android threats to date — nearing the predicted total of eight million by the close of 2015. In fact, top malicious and high-risk apps blocked by Trend Micro were adware related, reflecting this increase.
The healthcare industry experienced a notable rise in cyber-attacks, in addition to iOS and point-of-sale (PoS) systems continuing to be targeted. Since exploitations in these areas have been in their infancy for several years, researchers believe this rise is primarily due to a lack of preparedness—a sizable oversight that should be addressed.
The report also found that Rocket Kitten and those behind Operation Pawn Storm set their sights on new targets, proving that targeted attacks are evolving. Exploit kits constantly add new exploits to their arsenals, adding to their allure to expert and novice attackers. Crypto-ransomware expanded their target base to enterprise users, no longer exclusively pursuing consumers.
Meanwhile, the resurgence of macro malware suggest cybercriminals are taking advantage of user security complacency, through reliance on Microsoft Office defaults.
As more vulnerabilities emerge in open source OSs and applications, IT administrators will find it increasingly difficult to mitigate risks, warns the report.