Windows® 7 is Becoming Even Riskier, Malware up by 71 Percent

October 15, 2019

A new report -- Webroot® Threat Report: Mid-Year Update -- has found that one in 50 URLs are malicious, nearly one-third of phishing sites use HTTPS and Windows® 7 and exploits have grown 75 percent since January 2019.

According to the report,

Hackers are using trusted domains and HTTPS to trick victims.
- Nearly a quarter (24 percent) of malicious URLs were found to be hosted on trusted domains, as hackers know trusted domain URLs raise less suspicion among users and are more difficult for security measures to block.
- 1 in 50 URLs (1.9 percent) were found to be malicious, which is high, the report says, given that nearly a third (33 percent) of office workers click more than 25 work-related links per day.
- Nearly a third (29 percent) of detected phishing web pages use HTTPS as a method to trick users into believing they're on a trusted site via the padlock symbol.
Phishing continued rapid growth into 2019, and criminals are expanding their phishing targets.
- Phishing grew rapidly, with a 400-percent increase in URLs discovered from January to July 2019.
- The top industries impersonated by phishing include:
  - 25 percent are SaaS/Webmail providers
  - 19 percent are financial institutions
  - 16 percent are social media
  - 14 percent are retail
  - 11 percent are file hosting
  - Eight percent are payment services companies
Phishing lures are becoming increasingly personalized as more PII is collected from breaches.
- Phished passwords are used for more than account takeover. Specifically: extortion emails are being used, claiming the user has been caught doing something embarrassing or damaging that will be shared with colleagues, friends and family unless a ransom is paid, says the results.
- Phishing doesn't always target usernames and passwords. The attacks also go after secret questions and their answers, says the report.
Windows 7 is becoming even riskier, with infections increasing by 71 percent.
- Between January and June, the number of IPs that host Windows exploits grew 75 percent
- Malware samples seen on only one PC are at 95.2 percent, up from 91.9 percent in 2018
- Out of all infected PCs, 64 percent were home user machines, and 36 percent were business devices.

You must login or register in order to post a comment.

ON DEMAND: DevSecOps creates an environment of shared responsibility for security, where AppSec and development teams become more collaborative. With the right training and tools, developers can become more hands-on with security and, with that upskilling, stand out among their peers... however, they need the security specialists on-side, factoring them into securing code from the start and championing this mindset across the company.

ON DEMAND: The insider threat—consisting of scores of different types of crimes and incidents—is a scourge even during the best of times. But the chaos, instability and desperation that characterize crises also catalyze both intentional and unwitting insider attacks. Learn how your workers, contractors, volunteers and partners are exploiting the dislocation caused by today's climate of Coronavirus, unemployment, disinformation and social unrest.

Security Magazine

2020 October

This month in Security magazine, we explore how Corning's global security group ensured business continuity and employee safety during the global COVID-19 pandemic. Also, we highlight the global security team at Uber and their recent security programs and initiatives. Industry experts discuss travel safety programs, career hackers, working for terrible bosses, group attribution error and more.

View More Create Account

Windows® 7 is Becoming Even Riskier, Malware up by 71 Percent

Related Articles

Related Products

Report Abusive Comment