Evasive malware threats doubled in 2019

Sophisticated methods of attack that dodge detection are becoming commonplace

The proportion of 'evasive' malware threats that sneak past signature-based detection systems surged towards the end of last year, almost doubling against figures from last year.

Related Resource

How enterprises are embracing cyber security challenges

Enterprises across Europe, the Middle East and Africa are undergoing a significant transformation

Download now

Evasive malware threats comprised 68% in the fourth quarter of 2019, versus an average of 35% in 2019, according to a report by WatchGuard. The surge in these threats, as well as zero-day malware, are largely missed by traditional antivirus engines and show that sophisticated methods of attack are becoming more commonplace among hackers.

Advertisement - Article continues below

SQL injection, meanwhile, rose an enormous 8000% in the last quarter of 2019 against 2018, and was the most common form of network attack by some distance.

“Our findings from Q4 2019 show that threat actors are always evolving their attack methods,” said WatchGuard CTO Corey Nachreiner. 

“With over two-thirds of malware in the wild obfuscated to sneak past signature-based defenses, and innovations like Mac adware on the rise, businesses of all sizes need to invest in multiple layers of security. 

“Advanced AI or behavioural-based anti-malware technology and robust phishing protection like DNS filtering will be especially crucial.”

Chiming with the findings of a Malwarebytes report last month, Mac malware has also experienced a surge in the last few months. WatchGuard researchers found Mac adware returned to its top ten threats list, while a former study revealed that Mac malware detections overtook Windows for the first time.

Advertisement
Advertisement - Article continues below

Elsewhere, the study found that among the most common threats is a legacy Microsoft Excel flaw from 2017, assigned CVE-2017-11882, still being exploited by cyber cirminals. This ‘doppler’ exploit is heavily targeted at users in the UK, among other nations, and involves downloading several types of malware onto victims’ systems.

Advertisement - Article continues below

WatchGuard recommended that users ramp up the sophistication of their cyber security defences in light of the surge in evasive malware threats. This advice includes implementing a layered defence, instead of simply installing endpoint antivirus on workstations. 

Such an approach of multiple types of anti-malware from the perimeter through to the endpoint, including at least one implementation of behavioural detection instead of just signature-detection, will seriously enhance protections against emerging threats.

Featured Resources

Staying ahead of the game in the world of data

Create successful marketing campaigns by understanding your customers better

Download now

Remote working 2020: Advantages and challenges

Discover how to overcome remote working challenges

Download now

Keep your data available with snapshot technology

Synology’s solution to your data protection problem

Download now

After the lockdown - reinventing the way your business works

Your guide to ensuring business continuity, no matter the crisis

Download now
Advertisement

Recommended

Malware attacks using machine identities doubled in 2019
cyber security

Malware attacks using machine identities doubled in 2019

4 Aug 2020
Over two dozen Android apps found stealing user data
Google Android

Over two dozen Android apps found stealing user data

7 Jul 2020
Best antivirus for Windows 10
antivirus

Best antivirus for Windows 10

30 Jun 2020
Searching for a new job? That LinkedIn job offer may be fake
hacking

Searching for a new job? That LinkedIn job offer may be fake

19 Jun 2020

Most Popular

How to find RAM speed, size and type
Laptops

How to find RAM speed, size and type

3 Aug 2020
How to use Chromecast without Wi-Fi
Mobile

How to use Chromecast without Wi-Fi

4 Aug 2020
How do I fix the Windows 10 Start Menu if it's frozen?
operating systems

How do I fix the Windows 10 Start Menu if it's frozen?

3 Aug 2020