The complexity Cyber security landscape is getting increased in the recent months. Based on a recent study by Security firm Symantec, email malware rate continues to increase and to threat WannaCry.
According to July’s Latest Intelligence, the email malware rate in July increased to one in 359 emails, up from one in 451 the previous month. This marks the highest rate seen in the past seven months. The tendency in the malware being distributed through email seems to be catching on, with several famous malware families recently adding functionality that allows them to spread via spam email.
Following the success of WannaCry and Petya, the banking Trojans Emotet and TrickBot have both added support for self- spreading companies. Emotet has the capacity to seal email credentials from infected computers and use them to send out spam in order to spread itself. TrickBot takes the advantage of SMB to spread to computers on the same network as the original host and also spreads itself via spam posing as invoices from a financial organization. However, TrickBot’s new module doesn’t appear to be fully implemented yet, according to the researchers that discovered it.
The global spam rate for July was recorded as the highest since March 2015, increasing 0.6 percentage points to 54.9 percent. As several malware families have been demolished in July to have added functionality that permitted them to send out spam containing copies of themselves. However, it is not just malware authors that contribute to the worlds spam problem.
The phishing rate also increased slightly in July, up to one in 1,968 emails, making it the highest rate seen for the past 12 months.The threat posed by phishing attacks prompted one U.S. senator to take it upon himself to urge federal agencies to better protect themselves. U.S. Senator Ron Wyden sent a letter to the Department of Homeland Security in July calling for stricter controls. Wyden’s letter called for agencies to use the email protocol called Domain-based Message Authentication, Reporting and Conformance (DMARC), in order to reduce the risk of phishing attacks involving parody email addresses.