Malicious programs, or malware, are becoming increasingly difficult to detect by security software. New variants come with increasingly sophisticated evasion capabilities that protection software is not prepared for. Thanks to the increasing difficulty of detection, the number of evasive malware detections has risen to record levels.
A report by WatchGuard Technologies states that almost four out of five of all malware delivered over encrypted connections is evasive. More than two-thirds of malware detections occurred over encrypted connections, and within this group, 78% were evasive zero-day threats able to bypass basic protections.
It's getting harder to avoid malware
The report states that an unfortunate pattern is starting to emerge, as the amount of evasive malware has been growing steadily from quarter to quarter. WatchGuard Technologies claims that these types of threats often can stop at the perimeter with the help of firewalls that decrypt and analyze incoming traffic. But it is also indicated that many organizations that could do so do not put in place sufficient protections to prevent this. evasive malware.
The total number of detected network attacks is increasing. An analysis of the last three years shows that in the first quarter of 2022 saw the highest number of network attack detections, with an increase of 39% from one quarter to another.
One reason, according to the researchers, is the fact that many threat actors try to abuse known vulnerabilities. Another reason is the growth of enterprise networks, which means there are more vulnerable endpoints to send attacks to.
Advanced threats increased by a third, suggesting a higher level of zero-day threats than ever before. For Corey Nachreiner, CSO of WatchGuard, remote work is causing a lot of problems for companies. Nacxhreiner says that the only way to solve the security conundrum is to take a unified security approach.
With the highest level of zero-day threats we've ever recorded and an attack surface that extends far beyond the network perimeter to IoT, home networks, and mobile devices, businesses need to take a true security approach. that can quickly and efficiently adapt to the growing threat landscape. Organizations must commit to implementing simple but critical measures like updating and patching systems on a regular basis to keep hackers out.
Corey Nachreiner, CSO of WatchGuard,
Source: TechRadar
