Januarys Most Wanted Malware: Cryptomining Malware Continues to Drain Enterprise CPU Power, say Check Point

Check Points latest Global Threat Index reveals that rapid rise in cryptomining malware severely impacting organizations in January 2018

GlobeNewswire 15-Feb-2018 9:10 AM

SAN CARLOS, Calif., Feb. 15, 2018 (GLOBE NEWSWIRE) -- Check Point Software Technologies Ltd. (NASDAQ:CHKP),a leading provider of cybersecurity solutions globally, has revealed that cryptomining malware continues to impact organizations globally as 23 percent of them were affected by the Coinhive variant during January 2018, according to the companys latest Global Threat Impact Index.

Check Points researchers discovered three different variants of cryptomining malware in its Top 10 most prevalent ranking, with Coinhive ranking first, impacting more than one-in-five organizations. Coinhive performs online mining of Monero cryptocurrency when a user visits a web page without the user's approval. The implanted JavaScript then uses the computational resources of the end users machines to mine coins, impacting system performance.

Over the past three months cryptomining malware has steadily become an increasing threat to organizations, as criminals have found it to be a lucrative revenue stream, said Maya Horowitz, Threat Intelligence Group Manager at Check Point. It is particularly challenging to protect against, as it is often hidden in websites, enabling hackers to use unsuspecting victims to tap into the huge CPU resource that many enterprises have available. As such, it is critical that organizations have the solutions in place that protect against these stealthy cyber-attacks.

In addition to cryptominers, Check Point researchers also discovered that 21 percent of organizations have still failed to deal with machines infected with the Fireball malware. Fireball can be used as a full-functioning malware downloader capable of executing any code on victims machines. It was first discovered in May 2017, and severely impacted organizations during Summer of 2017.

In January, crypto-mining malware continued to be the most prevalent with Coinhive retaining its most wanted spot impacting 23 percent of organizations, followed by Fireball in second and Rig Exploit Kit in third impacting 17 percent of organizations.

January 2018s Top 3 Most Wanted Malware: *The arrows relate to the change in rank compared to the previous month.

  • Coinhive Crypto-Miner designed to perform online mining of Monero cryptocurrency when a user visits a web page without the user's approval.
  • Fireball Browser-hijacker that can be turned into a full-functioning malware downloader.
  • Rig ek Rig delivers Exploits for Flash, Java, Silverlight and Internet Explorer
  • Lokibot, an Android banking Trojan, was the most popular malware used to attack organizations mobile estates followed by the Triada and Hiddad.

    Januarys Top 3 Most Wanted mobile malware:

  • Lokibot Android banking Trojan and info-stealer, which can also turn into a ransomware that locks the phone.
  • Triada Modular Backdoor for Android which grants superuser privileges to downloaded malware.
  • Hiddad Android malware which repackages legitimate apps then releases them to a third-party store.
  • Check Points Global Threat Impact Index and its ThreatCloud Map is powered by Check Points ThreatCloud intelligence, the largest collaborative network to fight cybercrime which delivers threat data and attack trends from a global network of threat sensors. The ThreatCloud database holds over 250 million addresses analyzed for bot discovery, more than 11 million malware signatures and over 5.5 million infected websites, and identifies millions of malware types daily.

    * The complete list of the top 10 malware families in December can be found on the Check Point Blog

    Check Points Threat Prevention Resources are available at: http://www.checkpoint.com/threat-prevention-resources/index.html

    Follow Check Point via: Twitter:http://www.twitter.com/checkpointswFacebook:https://www.facebook.com/checkpointsoftwareBlog: http://blog.checkpoint.comYouTube:http://www.youtube.com/user/CPGlobalLinkedIn:https://www.linkedin.com/company/check-point-software-technologies

    About Check Point Software Technologies Ltd. Check Point Software Technologies Ltd. (www.checkpoint.com) is a leading provider of cyber security solutions to governments and corporate enterprises globally. Its solutions protect customers from cyber-attacks with an industry leading catch rate of malware, ransomware and other types of attacks. Check Point offers a multilevel security architecture that defends enterprises cloud, network and mobile device held information, plus the most comprehensive and intuitive one point of control security management system. Check Point protects over 100,000 organizations of all sizes.

    INVESTOR CONTACT: Kip E. Meintzer Check Point Software Technologies+1.650.628.2040ir@checkpoint.com

    MEDIA CONTACT: Emilie Beneitez Lefebvre Check Point Software Technologies Tel: +44 (0) 7785 381 302press@checkpoint.com

    Source: Check Point Software Technologies Ltd.

    Wait, Before You Leave...

    Receive Anticipated Price Moves into Earnings

    Enter your email address below to receive FREE daily information about expected earnings moves and upcoming earnings.
    Market Chameleon