igor - Fotolia

WatchGuard finds old security threats still cause headaches

The security vendor has decided to produce its own quarterly reports on the state of the threat landscape and has just issued the first covering Q4 2016

Anyone who sells security will understand the role that they play as a educator helping customers get to grips with preventing human behaviour that often leads to breaches.

As a result of staff continuing to make basic mistakes some very old security threats are still causing problems for customers.

WatchGuard has launched its first quarterly internet security report and finds that some of the old threats are reappearing along with some emerging issues that are designed to make life more difficult for those trying to keep data safe.

One of the hot topics in the market at the moment is ransomware and the WatchGuard survey picked that up as something that had been a main feature of the last quarter of last year.

“With ransomware attempts and malicious websites dominating the headlines along with cyberattacks such as the Mirai Botnet, the SWIFT banking attacks and alleged Russian interference in the US presidential election, it was a busy quarter for cybercriminals,” said Jonathan Whitley, sales director for Northern Europe at WatchGuard.

“The insight trends, research and security tips in our Quarterly Internet Security Reports are designed to help companies stay educated and vigilant in such a dynamic threat landscape," he added.

WatchGuard has decided to launch its own quarterly reports using information it gathers from its unified threat management devices out in the field.

The results will be shared with partners and can be used to spark discussions with customers about where investments can be made.

“Our Threat Lab has been monitoring the most prevalent security industry threats and trends for years and now with the addition of the Firebox Feed—anonymised threat analytics from Fireboxes deployed around the world—we have firsthand, acute insight into the evolution of cyberattacks and how threat actors are behaving. Each quarter, our report will marry new Firebox Feed data with original research and analysis of major information security events to reveal key threat trends and provide defence best practices," said Corey Nachreiner, CTO at WatchGuard Technologies.

The main findings

•  JavaScript is a popular malware delivery and obfuscation mechanism with a rise in malicious JavaScript, both in email and over the web.
•  Most network attacks were aimed at web services and browsers, with 73% of the top attacks targeting web browsers in drive-by download attacks.
•  All of the top ten exploits were web-based attacks and the top network attack was  Wscript.shell Remote Code Execution that targets Internet Explorer (IE). This attack almost entirely affected Germany alone. Breaking it down country by country, it targeted Germany 99% of the time.

Read more on Data Protection Services