To keep away from falling sufferer to a malware an infection, customers first want to pay attention to which malware strains are actively being utilized by cybercriminals of their assaults which is why Webroot releases an inventory of the nastiest malware every year.
In its third annual nastiest malware list, the cybersecurity agency examined this yr’s greatest cyber threats and ranked them primarily based on their severity.
In keeping with Webroot, phishing and distant desktop protocol-related breaches stay the highest strategies its has noticed cybercriminals utilizing to launch their assaults. Nonetheless, new malware strains and ways are being deployed every day whereas others have acquired upgrades that made them extra highly effective.
This yr the primary development the agency noticed is modularity as cybercriminals have adopted a extra modular malware methodology through which they mix assault strategies and mix-and-match ways to make sure their assaults attain their supposed targets.
Nastiest malware of 2020
Emotet has as soon as once more taken the highest spot on Webroot’s listing of the nastiest malware for the third yr in a row. The malware is deployed by cybercriminals in a botnet that’s used to unfold ransomware and it usually seems alongside TrickBot, Dridex, QakBot, Ryuk, BitPaymer and REvil.
Subsequent up on the listing is the Gozi trojan, IcedID trojan and Maze ransomware which are sometimes deployed collectively. In a possible assault state of affairs, Gozi may find yourself on a machine by way of a malicious e-mail, botnet and even TrickBot after which drop the IcedID trojan to assist enhance an attacker’s probabilities of acquiring the credentials or data they need.
Similar to TrickBot, Dridex is one other in style banking/info-stealing Trojan that made Webroots’s listing this yr. It has been round for years and is dropped by way of Emotet or by way of malicious spam campaigns. Additionally in an analogous method to TrickBot, Dridex spreads laterally and sometimes deploys ransomware akin to BitPaymer/DoppelPaymer.
Whereas these malware strains had been the nastiest this yr, they are not the one ones to make the listing. Different notable contenders for the nastiest malware of 2020 together with the REvil and Dharma ransomware, the multi-functional malware distribution instrument Valak and the info-stealing trojan QakBot.
To stop falling sufferer to malware, Webroot recommends organizations lock down RDP, educate their staff about phishing, set up a good safety suite, develop a catastrophe restoration plan and backup up their necessary knowledge.