Windows® 7 is Becoming Even Riskier, Malware up by 71 Percent

October 15, 2019

A new report -- Webroot® Threat Report: Mid-Year Update -- has found that one in 50 URLs are malicious, nearly one-third of phishing sites use HTTPS and Windows® 7 and exploits have grown 75 percent since January 2019.

According to the report,

Hackers are using trusted domains and HTTPS to trick victims.
- Nearly a quarter (24 percent) of malicious URLs were found to be hosted on trusted domains, as hackers know trusted domain URLs raise less suspicion among users and are more difficult for security measures to block.
- 1 in 50 URLs (1.9 percent) were found to be malicious, which is high, the report says, given that nearly a third (33 percent) of office workers click more than 25 work-related links per day.
- Nearly a third (29 percent) of detected phishing web pages use HTTPS as a method to trick users into believing they're on a trusted site via the padlock symbol.
Phishing continued rapid growth into 2019, and criminals are expanding their phishing targets.
- Phishing grew rapidly, with a 400-percent increase in URLs discovered from January to July 2019.
- The top industries impersonated by phishing include:
  - 25 percent are SaaS/Webmail providers
  - 19 percent are financial institutions
  - 16 percent are social media
  - 14 percent are retail
  - 11 percent are file hosting
  - Eight percent are payment services companies
Phishing lures are becoming increasingly personalized as more PII is collected from breaches.
- Phished passwords are used for more than account takeover. Specifically: extortion emails are being used, claiming the user has been caught doing something embarrassing or damaging that will be shared with colleagues, friends and family unless a ransom is paid, says the results.
- Phishing doesn't always target usernames and passwords. The attacks also go after secret questions and their answers, says the report.
Windows 7 is becoming even riskier, with infections increasing by 71 percent.
- Between January and June, the number of IPs that host Windows exploits grew 75 percent
- Malware samples seen on only one PC are at 95.2 percent, up from 91.9 percent in 2018
- Out of all infected PCs, 64 percent were home user machines, and 36 percent were business devices.

You must login or register in order to post a comment.

2019 State of Organizational Resilience Report: Global Trends, Data and Analysis

Critical events can vary widely in type and size – from natural disasters to workplace violence – and a drawn-out response can lead to significant operational losses, brand damage, and concerns for health and safety. Organizational Resilience is the ability to identify, prepare for, and resolve these critical events, which is a vital trait for any mature institution.

The 2019 Security 500 Report will unveil the top 10 trends CSOs and enterprise security executives are facing today and how each of them could impact the enterprise’s global reputation with the public, governments and business partners.

Poll

Emergency Communications

View Results

Poll Archive

Products

Effective Security Management, 6th Edition

Effective Security Management, 5e, teaches practicing security professionals how to build their careers by mastering the fundamentals of good management. Charles Sennewald brings a time-tested blend of common sense, wisdom, and humor to this bestselling introduction to workplace dynamics.

See More Products

Security Magazine

2019 November

This month, Security magazine brings you the Security 500 Report, Rankings and Thought Leader Profiles. How does your enterprise compare to others? Which security programs are leading the way? Also this month, we highlight artificial intelligence, ransomware attacks, vaping and cybersecurity regulations.

View More Create Account

Windows® 7 is Becoming Even Riskier, Malware up by 71 Percent

Related Articles

Related Products

Related Events

Report Abusive Comment