Tuesday, November 12, 2024
HomeCyber Attack2023 Threat Report - Dramatic Surge in Social Engineering and Web Attacks

2023 Threat Report – Dramatic Surge in Social Engineering and Web Attacks

Published on

Malware protection

The Second quarter of 2023 has shown a significant increase in the overall cyber-threat risks. The blocking of unique web attacks rose to 24% which accounts for more than 700 million unique blocked attacks each month.

Among these cyber risks, Social engineering and web-related threats have surged drastically, which include scams, Phishing, Adware, Trojans, File Infectors, and other types of risks when compared to other cyber threats.

Threat Vectors Based on Attack Types

Furthermore, the shielding of blocked attack statistics showed 594 million web-related attacks, 37 million file-based attacks, 14 million email-based attacks, 5 million behavioral threats, 3 million exploits, 600k scripts, and 500k other types of attacks.

- Advertisement - SIEM as a Service

In addition, blocked URLs accounted for 147 million and blocked files contributed to 61 million during the second quarter of 2023.

Among these attack vectors, Desktop-related attack types and Mobile-related malware types were analyzed which yielded further depth to the attacking methodologies of threat actors.

Statistical Analysis

The highest number of ransomware attacks were in Mozambique, Papua New Guinea, Afghanistan, Angola, Ghana, Republic of Korea.

Along with this, the Avast threat report showed most common coin miners were Web miners (various strains), XMRig, FakeKMSminer, VMiner, CoinBitMiner, CoinHelper, and NeoScrypt, which were the most common coin miners.

Information stealer malware saw a 14% decrease in Q2 of 2023. However, the most common info stealer malware were AgentTesla, FormBook, Raccoon Stealer, RedLine, Fareit, Lokibot, and ViperSoftX.

Document
FREE Webinar

API Security Fundamentals: How to Discover, Scan and Protect APIs

API Attacks Have Increased by 400% – Understand the Fundamentals of Protecting Your APIs with a Positive Security Model – Register Now for a Free Webinar

Threat actors targeting desktop devices have been increasing day by day and organizations are taking several precautionary methods to prevent attacks from breaching their security measures. However, Desktop-related threats still remain prevalent.

In the pool of Desktop-related threats, Scams accounted for 51%, Phishing 25.6%, Trojan 3.5 %, Adware 3.8 %, File infectors 2.9 %, and other types of attacks 13.1%.

The scam has seen a surge of 101.9%, followed by Phishing with 6.6%. However, Trojan and File infectors have seen a reduction from the last quarter.

However, Mobile related threats showed dropper malware having a huge surge of 86% in the last quarter. The overall report showed Adware at 73.6% risks, followed by Dropper at 6.1%, Banker malware at 5.8 %, Trojan at 3.9%, and other types of malware at 7.5%.

Avast has released a complete report on the threat report of Q2 of 2023 which showed detailed information on the threats, malware, info stealers, ransomware, and related attack vectors.

Keep informed about the latest Cyber Security News by following us on GoogleNews, Linkedin, Twitter, and Facebook.

Eswar
Eswar
Eswar is a Cyber security content editor with a passion for creating captivating and informative content. With years of experience under his belt in Cyber Security, he is covering Cyber Security News, technology and other news.

Latest articles

10 Best DNS Management Tools – 2025

Best DNS Management Tools play a crucial role in efficiently managing domain names and...

Sweet Security Announces Availability of its Cloud Native Detection & Response Platform on the AWS Marketplace

Customers can now easily integrate Sweet’s runtime detection and response platform into their AWS...

Researchers Detailed Credential Abuse Cycle

Cybercriminals exploit leaked credentials, obtained through various means, to compromise systems and data, enabling...

New Android Malware SpyAgent Taking Screenshots Of User’s Devices

SpyAgent, a newly discovered Android malware, leverages OCR technology to extract cryptocurrency recovery phrases...

Free Webinar

Protect Websites & APIs from Malware Attack

Malware targeting customer-facing websites and API applications poses significant risks, including compliance violations, defacements, and even blacklisting.

Join us for an insightful webinar featuring Vivek Gopalan, VP of Products at Indusface, as he shares effective strategies for safeguarding websites and APIs against malware.

Discussion points

Scan DOM, internal links, and JavaScript libraries for hidden malware.
Detect website defacements in real time.
Protect your brand by monitoring for potential blacklisting.
Prevent malware from infiltrating your server and cloud infrastructure.

More like this

Researchers Detailed Credential Abuse Cycle

Cybercriminals exploit leaked credentials, obtained through various means, to compromise systems and data, enabling...

New Android Malware SpyAgent Taking Screenshots Of User’s Devices

SpyAgent, a newly discovered Android malware, leverages OCR technology to extract cryptocurrency recovery phrases...

Tor Network Suffers IP Spoofing Attack Via Non-Exit Relays

In late October 2024, a coordinated IP spoofing attack targeted the Tor network, prompting...