Fortinet Threat Landscape Report Q1 2018

Fortinet has released their quarterly Threat Landscape Report and while most common threat indicators actually dropped during the quarter, there is also proof attackers may simply refining their technologies and methodologies. Cryptojacking rising

Cryptojacking Doubles

With the quick rise of cryptocurrency, it is no surprise that cryptomining has also increased, targeting multiple systems and and different cryptocurrencies.

This new attack involves injecting malicious JavaScript into vulnerable websites, delivering it via phishing campaigns;

"Fileless JavaScript variants have been able to embed malicious code into legitimate web pages to compromise visiting devices. Simply browsing an infected site can enable attackers to hijack CPU cycles to perform cryptomining on behalf of a cybercriminal. In addition, ETERNAL BLUE, which was used in the WannaCry attacks has been repurposed for a cryptojacking campaign called WannaMine."

This malware attack was found to be affecting 13% of organisations in Q4 2017 where the trend has doubled in Q1 2018 to 28%.

A quick check to see if you are being mined is to check Task Manager (Windows) or Activity Monitor (Mac) where your IT team can list all running process and find and kill the culprit consuming resources.

Targeting IoT Devices

Attackers continue to probe for IoT vulnerabilities with several exploits topping the reports charts. Making sure your have a secure access controls to your devices is the first step to avoid being a victim. Once you have clear visibility you can than segment devices in to network zones with customised policies. These should be integrated with your Security Fabric.

What Can You Do Now?

Contact Servitel to arrange a free Cyber Threat Assessment to get a full report on your company's Cyber Health. The report will contain key analytics highlighting any potential weak points or potential breaches in your network

To read the full report, head to Fortinet's Blog.