Microsoft report: in Russia, most often encounter with malicious software
Microsoft published a report on threats to the security of information systems for the 1st quarter of 2017. It is based on data obtained from the company’s security software and services from corporate and private users. The data obtained was divided into security threats in the cloud environment and on the end devices. According to the results of the study, about 15% of computers in Russia are infected with malware.
In the 1st quarter of 2017, malware was detected at 14.8% of computers in Russia, while worldwide it was 9%. The good news is that the monthly statistics in Russia for the reported quarter shows a downward trend – 17.2% in January, 15.1% in February and 12% in March 2017. A similar situation occurred in the rest of the world.
Recently, the number of attacks on cloud services has increased. According to the Microsoft report, for the first quarter of 2017, there were four times as many security threats in the world as compared to the same period a year earlier. The number of attempts to log into the Microsoft account from malicious IP-addresses has increased by 44%, which is the main reason for the infection of cloud services (51%). Attacks via remote access protocol (23%), spam (19%), port scanning (3.7%) and SSH (1.7%) are also popular. More than 2/3 of attacks on Microsoft Azure services for the 1st quarter of 2017 were made from IP-addresses in China (35.1%), the USA (32.5%) and South Korea (3.1%). In the report it is noted that Trojans became the most widespread category of malicious software. As of the end of the first quarter of 2017, they were detected by users of 10.26% of computers. The second and third place was taken by viruses (1.59%), trojan loaders and droppers (0.64%). Also on most infected computers were found installers of additional software (5.49%), browser modifiers (2.14%) and adware (0.25%).
Attackers also often use websites to conduct phishing attacks and spread malicious software. In Russia, this happens most often after visiting hacker sites (0.59%, in the world – 0.17%), phishing sites (6%, in the world – 6.3%) and hosting (13.9%, in the world – 14.8%).
All these threats were fixed and prevented by the Windows Defender Security Intelligence security system, which scans more than 400 billion e-mails monthly for phishing attacks and malware, analyzes 450 billion login attempts and checks over 18 billion web pages.