INFOGRAPHIC

Key findings from the data show phishers leveraging browser-based social engineering strategies , new malware with ties to nation states , high amounts of zero-day malware and a rise in living- off-the-land attacks .

“ Organizations need to pay more active , ongoing attention to the existing security solutions and strategies their businesses rely on to stay protected against increasingly sophisticated threats ,” said Corey Nachreiner , Chief Security Officer , WatchGuard .

Key findings from the report are :

• New browser-based social engineering trends : Now that web browsers have more protections preventing pop-up abuse , attackers have pivoted to using the browser notifications features to force similar types of interactions . Also of note from this quarter ’ s top malicious domains list is a new destination involving SEO-poisoning activity .

• Threat actors from China and Russia behind 75 % of new threats in the Q1 Top 10 list : Three of the four new threats that debuted on our top ten malware list this quarter have strong ties to nation states , although this doesn ’ t necessarily mean those malicious actors are state-sponsored .

• Persistence of attacks against Office products , End-of-Life ( EOL ) Microsoft ISA Firewall : Threat Lab analysts continue to see document-based threats targeting Office products in the most widespread malware list this quarter . On the network side , the team also noticed exploits against Microsoft ’ s now-discontinued firewall , the Internet Security and Acceleration ( ISA ) Server , getting a relatively high number of hits . Considering this product has long been discontinued and without updates the analysts admit surprise to see attackers targeting it .

28 INTELLIGENTCIO NORTH AMERICA www . intelligentcio . com