If in doubt, visit websites directly and find the appropriate contact information from verified sources, and make sure you have malware protection installed. Be aware of signs such as an unfamiliar sender, request for personal information and links. As we head into November, which is a busy buying period, it is important that people remain vigilant and keep an eye out for suspicious emails that could be carrying malicious code. It is interesting that Lokibot has climbed back to the third spot so quickly, which shows an increasing trend towards phishing attacks. We saw a lot of change in the rankings this month, with a new set of malware families making up the big three. Although Text4Shell did not make the list of top vulnerabilities exploited this month, it has already impacted over 8% of organizations worldwide and Check Point will continue to monitor its impact. ![]() Text4shell is reminiscent of the Log4Shell vulnerability, which is still one year on, one of the major threats, ranking at number two in the October list. Based on the Apache Commons Text’s functionality, this allows attacks over a network, without the need for any specific privileges or user interaction. October also saw disclosure of a new critical vulnerability, Text4Shell, (CVE-2022-42889). This rise in popularity can be explained by the increase in spam campaigns themed around online inquiries, orders and payment confirmation messages. It can be distributed through phishing emails, malicious websites, SMS, and other messaging platforms. As a trojan, its goal is to sneak, undetected onto a system by masquerading as a legitimate program. Lokibot is a commodity infostealer that is designed to harvest credentials from a variety of applications including: web browsers, email clients and IT administration tools. Also, a new vulnerability, Text4Shell, affecting the Apache Commons Text library, was disclosed. There was a significant increase in the number of attacks from the infostealer Lokibot, which reached the third spot for the first time in five months. Our latest Global Threat Index for October 2022 reports that keylogger AgentTesla has taken first place as the most widespread malware, impacting 7% of organizations worldwide. ![]() New vulnerability, Text4Shell, was disclosed for the first time, and AgentTesla took the top spot as the most prevalent malware Check Point Research reports a significant increase in Lokibot attacks in October, taking it to third place for the first time in five months.
0 Comments
Leave a Reply. |