Top 10 malware threats in Greece
Check Point Research delivers the latest alert on a global threat list for June 2019. Researchers have confirmed that the larger, operational Emotet botnet is inactive since June. Emotet, which was in the top 5 malware globally by June 2019, has been distributing spam campaigns.
Check Point researchers believe that the Emotet may be down for maintenance, and will likely return soon with new features.
“Emotet came to the fore as a banking Trojan in 2014. Since 2018, however, we have seen its exploit as a botnet in large malspam campaigns, and used to distribute other malwares. Although its infrastructure was inactive for most of June, it remained in fifth place on the global threat list. This demonstrates its importance and popularity as well. It is, thus, likely to re-emerge with new features.” Maya Horowitz, Director of Intelligence and Threat Research at Check Point stated.
“In the summer of 2017 and 2018, we observed patterns of attacks that leveraged banking trojans. This event demonstrated that cybercriminals were trying to take advantage of the holiday season and that users during the holiday season pay less attention to security practices, using online banking services from shared devices and from less secure connections.”
The three most prevalent malware threats were:
XMRig is an open source software to mine cryptocurrency that was first discovered in May 2017.
JSEcoin -JavaScript mining software that can be embedded in websites.
Cryptoloot -Cryptocurrency generation software designed to make it possible to earn more money while staying at home or in the office. It uses a user’s CPU or GPU and any other resources that are available on their computer as well as unused power from mature victims for cryptomining.
The most prevalent mobile malware threats in June 2019
Lotoor has been the most prevalent mobile threat for several years now. This includes a relatively new foe called Triada. There’s also a new first time entry on the list, called Ztorg.
The 10 most prevalent malware threats in Greece for June:
- The Hawkeye malware is a Windows-based threat that can penetrate PCs when it’s installed on them. It takes user data in several different ways and then sends it to their remote server.
- JSEcoin is a JavaScript mining software that can be embedded in websites, but also functions as a cryptocurrency miner.
- Trickbot was released in October 2016 and is mostly associated with banking attacks. It first appeared in Australia and the UK and later in India, Singapore and Malaysia.
- Lokibot is often spread through phishing emails. Once connected to a computer, Lokibot can steal keys and other forms of personal data from Wallets like Bitcoin and credit cards from FTP servers and more.
- AZORult is a nefarious trojan and it’s designed to collect data and remove it from the infected system.
- XMRig is an open source CPU mining software that allows for Monero production process and was first observed in circulation in May 2017.
- NanoCore is a type of remote access trojan that typically installs itself on the computers of users who use Windows. But it also has features like screen capture, cryptocurrency mining, and remote control.
- FormBook is an InfoStealer that targets the Windows operating system and was first seen in 2016.
- Emotet is a sophisticated modular trojan that reproduces itself. The program is constantly on a method to avoid detection. It can spread with many methods. This includes initiating unsolicited messages with attachments or links to malicious places.
- Cryptoloot – Cryptocurrency generation software that uses the power of your CPU or GPU and your existing resources to generate cryptocurrency.
If you found this article helpful and interesting on malware in Greece, then you may also like this one.
Author: PC-GR
The World of Technology
