Reader Advisory

Some articles posted in The SlickMaster's Files may contain themes, languages, and content which may neither appropriate nor appealing to certain readers. READER DISCRETION is advised.

Thursday, September 02, 2021

Kaspersky detects 2K malware attacks per day during 1st half of 2021

08/28/2021 03:55:07 PM

Kaspersky has foiled over two thousand mobile malware attacks per day in the Southeast Asia region during the first half of the year.

Overall, the global cybersecurity company has managed to fend off 382,578 mobile attacks against users in SEA during the first half of 2021—a 14% increase compared with last year's same period (336,680).

Even if the Bring Your Own Device (BYOD) has become a trend before the pandemic, its use has increased exponentially since 2020 as companies adapted their IT infrastructure for business continuity, which, in turn, has employee's role in a company's network security.

A Kaspersky-commissioned survey last year revealed that a little more than two-thirds of respondents are using a personal device to work from home. Aside from this, employees are also using their work gadgets for personal activities such as watching video and educational content, reading news and playing video games.

Most interestingly, 33% of the 6,017 employees surveyed worldwide last year admitted to using their office devices to watch adult content, a type of content that is often targeted by cybercriminals.
"Laptops are the main workhorse, but mobile devices have also been used to access office emails and work-related systems even before the pandemic. It is risky but known that these same handsets are also being utilized for personal tasks and accessing guilty pleasures. With this trend being more rampant in a virtual home office, companies should revisit their policies, access rights, and security setup to block cyber criminals from entering their enterprise network through infected smartphones," said Yeo Siang Tiong, General Manager for Southeast Asia at Kaspersky.
Mobile malware refers to malicious software specifically targeted to infect mobile devices, including handsets, tablets, and other smart gadgets. While this threat hasn't entirely caught up to its PC counterpart in terms of volume or complexity, experts see more of their type designed to prey on smartphone features or tablet vulnerabilities. And with mobile work continues to take its course, mobile malware can steal an individual's data and be a launchpad for a targeted attack against a user's employer.

Since 2020, Kaspersky's telemetry has monitored and blocked a few thousand mobile malware attacks in SEA per quarter. The first quarter of 2021 garnered the highest number since last year, with 205,995 detected incidents.

About 4.42% of users in Malaysia were targeted by mobile malware during the first half of the year, followed by Thailand (4.26%) and Indonesia (2.95%). Singapore is quite close, with 2.83% of mobile users almost infected by this type of threat. Meanwhile, the Philippines (2.27%) and Vietnam (1.13%) logged the lowest percent.

The three most common mobile threats in SEA include:
  • Trojans – malicious programs that perform actions that the user does not authorize. They delete, block, modify or copy data and disrupt the performance of computers or computer networks.
  • Trojan-Downloader – downloads and installs new versions of malicious programs, including Trojans and AdWare, on victim computers. Once downloaded from the Internet, the programs are launched or included on a list of programs that will run automatically when the operating system boots up.
  • Trojan-Dropper – programs designed to secretly install malicious programs built into their code to victims' computers. This type of malicious program usually saves a range of files to the victim's drive. It launches them without any notification (or fake notification of an archive error, an outdated operating system version, etc.).
"Both employees and CIOs in the region embrace the current remote work and the future hybrid environment. It has its perks, but its cybersecurity loopholes should be taken considerably. BYOD is here to stay, and companies should take steps to beef up their defenses. It is important to train their employees regularly, keep them informed about the latest threats online, and provide them with tools such as encrypted devices, endpoint protection, and VPN. Most importantly, build a culture of trust and shared responsibility towards enterprise security," added Yeo.
Kaspersky experts also suggest the following tips for enterprises to better protect their networks and devices against cyber criminals:
  • Ensure your employees have all they need to securely work from home and know who to contact if they face an IT or security issue.
  • Schedule basic security awareness training for your employees. This can be done online and cover essential practices, such as account and password management, email security, endpoint security, and web browsing. Kaspersky and Area9 Lyceum have prepared a free course to help staff work safely from home.
  • Take key data protection measures, including switching on password protection, encrypting work devices, and ensuring data are backed up.
  • Ensure devices, software, applications, and services are kept updated with the latest patches.
  • Install proven protection software, such as Kaspersky Endpoint Security Cloud, on all endpoints, including mobile devices, and switch on firewalls.
  • Ensure you have access to the latest threat intelligence to bolster your protection solution.
  • Double-check the protection available on mobile devices. For example, it should enable anti-theft capabilities such as remote device location, locking and wiping of data, screen locking, passwords, and biometric security features like Face ID or Touch ID and enable application controls to ensure application controls only approved employees use applications.
While there is a lot of responsibility on employers to keep corporate devices and networks secure, Kaspersky is also offering the following recommendations for consumers and workers during their time at home:
  • Ensure your router supports and works smoothly when transmitting Wi-Fi to several devices simultaneously, even when multiple workers are online. There is heavy traffic (as is the case when using video conferencing).
  • Regularly update your router to avoid potential security issues.
  • Set up strong passwords for your router and Wi-Fi network.
  • If you can, only do work on devices provided by your employer. Putting corporate information on your devices could lead to potential security and confidentiality issues.
  • Do not share your work account details with anybody else, even if it seems a good idea at the time.
  • Always feel able to speak to your employer's IT or IT security team if you have any concerns or issues while working from home.
  • Follow the cyber hygiene rules: use strong passwords for all accounts, do not open suspicious links from emails and IMs, never install software from third-party markets, be alert, and use reliable security solutions such as Kaspersky Total Security.
Kaspersky is offering an Employee Discount Program, which allows its existing partners nationwide to avail of up to 42% off on its premium security solutions. 
Kaspersky solutions like the 1-year, single-device Kaspersky Total Security is priced from P1,390 to only P800 or a savings of 42%. Meanwhile, the 2-year, 5-device Kaspersky Internet Security license, which regularly costs P3,080, is now offered for just P2,150 or just P25 per month.  

Visit for more details of the promo.

Author: slickmaster | © 2021 The SlickMaster's Files

No comments:

Post a Comment

Feel free to make a comment as long as it is within the bounds of the issue, and as long as you do it with decency. Thanks!