Q1 2016 Spam and Malware Traffic Eclipses 2015 Highs

April 27, 2016

Q1 2016 Spam and Malware Traffic Eclipses 2015 Highs

 

AppRiver, LLC, a leading provider of email messaging and Web security solutions, today confirmed that the levels of spam and malware email traffic it recorded during Q1 has already surpassed total levels documented during the whole of 2015, totaling at 2.3 billion malicious email messages, with 1.7 billion occurring in March alone.

North America was again the most common point of origin for spam in Q1 2016, with India taking second place, just in front of Mexico. While the report noted many trending malware campaigns, ransomware has hit a fever pitch in 2016, becoming the main method for cybercriminals to make money in the cyber arena.

“The malicious Web and email traffic continues to multiply rapidly, and it’s not slowing down anytime soon,” says Troy Gill, manager of security research at AppRiver. “The increase in malicious traffic that we’ve seen over the first quarter, and even last quarter of 2015 can be traced to two factors: the widespread ability to purchase malware on the Dark Web, and its effectiveness due to end users’ reluctance to use antivirus software and perform regular software updates.”

AppRiver confirms that receiving a malicious message is no longer a numbers game, as cybercriminals are also targeting sectors with crafted messages. Jon French, security analyst at AppRiver, says, “We have also seen ransomware attacks move from a simple ‘cast net’ style approach to attacks aimed at certain verticals, with the most prevalent this quarter being the healthcare industry.” French adds, “Malicious macros in Microsoft Word and Excel documents have been a very popular method for delivering the Trojans carrying the payload for ransomware attacks.”

For those who are not falling for the macros method, cybercriminals are also utilizing hidden PowerShell commands in documents to infect machines, as well as obfuscated JavaScript as a vehicle to deliver attack code.

AppRiver has also seen an uptick in wire transfer attacks, typically targeting finance departments. Custom communications are spoofed by the attackers to appear as if they come from within an organization, most often impersonating a company’s CEO.

A final trend AppRiver has been monitoring is the Distributed Spam Distraction (DSD) technique. Fred Touchette, manager of security research at AppRiver, explains, “DSDs flood an individual’s inbox with spam emails in an attempt to hide critical confirmation emails for purchases or wire transfers made in the victim’s name. With all of the spam in the victim’s inbox, the deed is done before the confirmation email is located, allowing the cybercriminal to make away with fraudulent purchases or wire transfers.”

From a technical standpoint, AppRiver advises organizations to have layered security systems in place that monitor all network traffic and communications to prevent malware attacks and breaches, including:

Antispam and antivirus solutions

Routine, mandatory software updates

Double authentication

Formal security policies

AppRiver has included more detail on these attacks and statistics within its Q1 Global Security Report. To read the full report and watch AppRiver’s security analysts’ round table discussion on its findings, visit https://www.appriver.com/about-us/security-reports/global-security-report-2016-quarter-1/.

About AppRiver

AppRiver is a Software-as-a-Service (SaaS) provider offering award-winning email and Web security solutions to businesses of all sizes. Understanding the need to protect networks from today's increasingly complex IT threats, AppRiver offers businesses a comprehensive, yet affordable subscription-based solution that incorporates the latest spam and virus protection, email encryption and Web security on the market. In addition, the company provides a complete managed service for Microsoft Exchange, as well as a bundled Office 365 solution. Since its inception, AppRiver has sustained an impressive 93% customer retention rate while growing its customer base to more than 47,000 companies and 10 million mailboxes worldwide. The company maintains offices in Florida, Georgia, Texas, New York, Switzerland and Spain, and is led by an Ernst & Young Florida Entrepreneur of the Year award winner. To learn more, visit AppRiver online, Facebook, LinkedIn and Twitter.