Cybercriminals using legitimate sites to launch attacks: Websense

Cybercriminals continue to evolve their attack planning and execution to stay ahead of most existing security measures.

By Mir Ubaid | Published 08 Apr 2014 16:48 IST
HIGHLIGHTS
  • Cybercriminals continue to evolve their attack planning and execution to stay ahead of most existing security measures.

Cybercriminals using legitimate sites to launch attacks: Websense
Cybercriminals using legitimate sites to launch attacks: Websense

The 2014 report from Websense Security Labs, a US computer security software company has found that 85 percent of malicious links used in web attacks are located on compromised legitimate websites. The firm says that the websites classified as business and economy, information technology, shopping and travel constituted the top ten compromised sites in its list.

The firm's security researchers analyzed the seven threat stages of advanced attacks including the modification and repurposing of existing malware source code. 30 percent of the malicious executable files sampled included custom encryption of command and control communication which is also called data exfiltration.

The report found that the average number of website redirects user per attack in 203 was four, while the maximum number of redirects used in a documented attack was 20.

Vice President of security research at Websense, Charles Renert said, "While the determined, persistent attackers continue to have success in advanced, strategic attacks using zero-day exploits and advanced malware, there has also been a boom in cyber criminal activity on a massive scale." He added that cybercriminals continued to evolve their attack planning and execution to stay ahead of most existing security measures.

The firm found that the Zeus malware dramatically increased in use as it was repurposed for other vertical markets. The malware was originally designed as a financial threat and keylogging Trojan. The report adds that during the past year, the government and communications industries joined financial firms among the top five verticals targeted with Zeus malware.

India was the third most attacked country by Zeus malware.

Source: CSO

 

Advertisements

Trending Articles

Advertisements

LATEST ARTICLES View All

Advertisements

Hot Deals View All

AGARO 33511 MAGMA Air compression leg massager with handheld controller, 3 massage mode and intensity for feet, calf and thigh Massager  (Black)
AGARO 33511 MAGMA Air compression leg massager with handheld controller, 3 massage mode and intensity for feet, calf and thigh Massager (Black)
₹ 6199 | $hotDeals->merchant_name
IRIS Fitness Leg and Foot Massager  (Red)
IRIS Fitness Leg and Foot Massager (Red)
₹ 10999 | $hotDeals->merchant_name
ARG HEALTH CARE Leg Massager for Pain Relief Foot, Calf and Leg Massage with Vibration and Heat Therapy (Golden)
ARG HEALTH CARE Leg Massager for Pain Relief Foot, Calf and Leg Massage with Vibration and Heat Therapy (Golden)
₹ 15499 | $hotDeals->merchant_name
HP 15.6 LAPTOP BAG Backpack  (Black, Black, 25 L)
HP 15.6 LAPTOP BAG Backpack (Black, Black, 25 L)
₹ 275 | $hotDeals->merchant_name
ah arctic hunter Anti-Theft 15.6 inches Water Resistant Laptop Bag/Backpack with USB Charging Port and for Men and Women (Black)
ah arctic hunter Anti-Theft 15.6 inches Water Resistant Laptop Bag/Backpack with USB Charging Port and for Men and Women (Black)
₹ 2699 | $hotDeals->merchant_name
DMCA.com Protection Status