Cybercriminals use browsers to spread malicious programs
Attacks via browsers are becoming the primary method for spreading malicious programs. According to a Kaspersky report, the following methods were used most often by cybercriminals to penetrate systems:
Exploiting vulnerabilities in browsers and their plugins (drive-by download): Infection in this type of attack takes place when visiting an infected website, without any intervention from the user and without their knowledge. And this is the number one method utilized by cybercriminals, the one used in the majority of attacks. Protection against such attacks requires an Internet security class solution capable of detecting threats as they are being downloaded from the Internet and the timely installation of all the latest updates for the browser and its plugins.
Social engineering: These attacks require user participation, with the user having to download the malicious file to their computer. This happens when the cybercriminal tricks the victim into believing they are downloading a legitimate program. Protection against such attacks requires a web antivirus solution capable of detecting threats as they are being downloaded from the Internet.
In the period April-June 2013, Kaspersky detected 19,938,954 Internet-borne malware incidents on the computers of KSN participants in India. Overall, 35.6 percent of users were attacked by web-borne threats during this period. This places India in the 15th place worldwide when it comes to the dangers associated with surfing the web.
The use of local infection statistics for user computers is an extremely important indicator. Worms and file viruses account for the majority of such incidents. This data shows how frequently users are attacked by malware spread via removable USB drives, CDs and DVDs, and other “offline” methods.
In the period April-June 2013 53,974,712 local malware incidents on the computers of KSN participants in India were detected. Overall, 49.6 percent of users in this country were attacked by local threats during this period. This again puts India in the 10th place worldwide.
When a user is attacked by an online threat, the security firm record the source of this threat—the location of the malicious objects that tried to infect the system. The share of malicious incidents caused by malware hosted in India was 0.10 percent—that is 543,946 incidents in the period April-June 2013. This puts India in 39th place worldwide.
According to the report, the share of spam sent via computers and servers based in India was 2.52 percent in April – June 2013. This places India again in the 10th place worldwide.
- CISO’s Role Will Be Even More Challenging
- CIOs Can’t Afford To Ignore Risk Management Anymore
- 8 Cybersecurity Trends CISOs Should Remember
- Here's Why Some Firms May Negotiate With Cyber-Criminals
- 5 Key Takeaways From Skype For Business
- Security Analytics: CXOs' Key To Breach Detection
- The Cyber Space Needs More Security Warriors
- MetricStream CTO's Tips For Best GRC Strategy
- How CISOs Can Focus On Targeted Cyber Attacks
- Cyber Security: How Vulnerable Are You?