Check Point researchers report that “Trickbot” and “Emotet” are at the top of the “Global Threat Index” and are used to spread “ransomware” to hospitals and healthcare providers worldwide.
“Check Point Research”, the research division of “Check Point Software Technologies”, a provider of cybersecurity solutions, published the latest “Global List of Threats” for October 2020. The research team reports that the “Trickbot” and “Emotet” trojans continue to be ranked as two most prevalent malware for October and that these trojans are responsible for the sharp increase in “ransomware” attacks against hospitals and healthcare providers worldwide.
The FBI and other US government agencies recently issued a warning about “ransomware” software attacks targeting the healthcare sector, warning that estimated infections from “Trickbot” have exceeded a million+ worldwide, and are being used to download and spread encrypted “ransomware” files such as “Ryuk”. “Ryuk” is also distributed through the “Emotet” trojan, which remains at the top of the “Top Malware Index” for the fourth month in a row.
Data from Check Point threat intelligence showed that it was the healthcare sector that was mainly targeted by “ransomware” in the US last October, with attacks increasing by 71% compared to September 2020. Similarly, “ransomware” attacks against health organizations and hospitals increased by 36% in the Europe, Middle East and Africa region (EMEA) and 33% in the Asia-Pacific region (APAC) in October.
«We have seen “ransomware” attacks increase since the beginning of the coronavirus pandemic, with the aim of exploiting –successfully– the security gaps of the organizations, as they try to support the human resources working remotely. These attacks have increased alarmingly over the past three months, especially in the healthcare sector, and are due to pre-existing “TrickBot” and “Emotet” infections. We urge healthcare providers around the world to be extremely vigilant about this risk and to ‘scan’ their network for these infections before they cause real damage, being the gateway to a ‘ransomware’ attack.“
said Maya Horowitz, Director of Information and Threat Research at Check Point.
The research team also warns that “MVPower DVR Remote Code Execution” is the most common vulnerability to be exploited, affecting 43% of organizations worldwide. These are followed by “Dasan GPON Router Authentication Bypass” and “HTTP Headers Remote Code Execution (CVE-2020-13756)”, which affect 42% of organizations worldwide.
The full list of the world’s 10 most prevalent malware threats for October is available here.
(Συνολικές Επισκέψεις: / Total Visits: 11)
(Σημερινές Επισκέψεις: / Today's Visits: 1)