WatchGuard Technologies’ latest Internet Security Report shows the top malware, network and endpoint security threats observed by WatchGuard Threat Lab researchers during Q2 2024.
Key findings include that 7 of the Top 10 malware threats by volume were new this quarter, indicating that threat actors are moving towards these techniques.
New top threats included Lumma Stealer, malware designed to steal sensitive data from compromised systems; a Mirai Botnet variant, to turn infected smart devices into remotely controlled bots; and LokiBot malware, which targets Windows and Android devices to steal credential information.
The Threat Lab also saw new instances of threat actors employing “EtherHiding,” a way of embedding malicious PowerShell scripts in blockchains such as Binance Smart Contracts. A fake error message linking to the malicious script appears on compromised websites, prompting victims to “update their browser.”
Malicious code in blockchains poses a long-term threat, as blockchains could become an immutable host of malicious content.
“The latest findings in the Q2 2024 Internet Security Report show the importance of routinely updating and patching software and systems to address security gaps and ensure threat actors cannot exploit older vulnerabilities,” said Corey Nachreiner, Chief Security Officer, WatchGuard Technologies.
Nachreiner said that by taking a proactive defence-in-depth approach, businesses can help successfully fight these security challenges.
Additional key findings from the report include a decrease in malware detections by nearly a quarter, alongside an increase in network attacks by 33 percent from Q1 2024.
Data analysed in the report is based on anonymised threat intelligence from active WatchGuard network and endpoint products.