A new report recently released by security firm PandaLabs has found that new malware is being created at an alarming rate. According to the study, 20 million new strains were produced in just the third quarter of 2014 alone, meaning more than 227,000 new samples were detected each day.
The report also found that Trojans remain the most commonly used form for malware, with 78 percent of attacks using this method. Viruses came in a distant second, accounting for just under 9 percent of total attacks worldwide. Trojans encompass a variety of threats – backdoors, ransomware, rootkits, spyware, infostealers, etc.- so it is no surprise that the category accounted for the largest number of attacks.
As malware samples continue to increase, so does the number of people infected with the malicious software. According to the study, 37.9 percent of users across the globe were infected in the third quarter, an increase of 1 percent from the previous quarter. Again, Trojans were responsible for the majority of infections. Three-quarters of all successful infections were due to Trojans, an increase of 13 percent from the second quarter of 2014. Almost 15 percent of infections were due to potentially unwanted programs, or PUPs, which are commonly downloaded alongside a desired program.
Changing cybercrime risks call for increased threat detection
In an interview with BetaNews, technical director of PandaLabs Luis Corrons noted that recent months have revealed the changing cyberthreat landscape.
"In these last months we have seen how cybercrime has continued to grow," said Corrons. "Criminals haven't ceased to create malware in order to infect as many systems as possible so as to access sensitive or confidential information."
For organizations looking for a way to secure sensitive systems and data, the most reliable method of ensuring enterprise security is to continuously monitor network activity. By implementing security information and event management, companies are able to keep an eye on privileged systems around the clock.
With a managed SIEM service, enterprises receive the constant monitoring necessary to protect their networks as well as analyzed activity data that provides actionable information that can be used to create a more robust defense strategy. Data breaches and cyberattacks are only going to increase in severity, but a SIEM solution allows enterprises to be prepared and leaves privileged information and networks intact.