https://www.channelfutures.com/wp-content/themes/channelfutures_child/assets/images/logo/footer-new-logo.png
  • Home
  • Technologies
    • Back
    • SDN/SD-WAN
    • Cloud
    • RMM/PSA
    • Security
    • Telephony/UC/Collaboration
    • Cable
    • Mobility & Wireless
    • Fiber/Ethernet
    • Data Centers
    • Backup & Disaster Recovery
    • IoT
    • Desktop
    • Artificial Intelligence
    • Analytics
  • Strategy
    • Back
    • Mergers and Acquisitions
    • Channel Research
    • Business Models
    • Distribution
    • Master Agents
    • Sales & Marketing
    • Best Practices
    • Vertical Markets
    • Regulation & Compliance
    • Diversity & Inclusion
  • MSSP Insider
  • MSP 501
    • Back
    • Apply Now
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Galleries
    • Podcasts
    • Videos
    • From the Industry
    • Reports/Digital Issues
    • Webinars
    • White Papers
    • Channel Educational Series
  • EMEA
  • Channel Chatter
    • Back
    • People on the Move
    • New/Changing Channel Programs
    • New Products & Services
    • Industry Honors
    • Channel Convergence
  • Resources
    • Back
    • Advisory Boards
    • Industry Organizations
    • Our Sponsors
    • Content Resources
  • Awards
    • Back
    • 2021 MSP 501
    • Circle of Excellence
    • Excellence in Digital Services
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
    • Industry Events
  • DE&I
Channel Futures
  • NEWSLETTER
  • Home
  • Technologies
    • Back
    • SDN/SD-WAN
    • Cloud
    • RMM/PSA
    • Security
    • Telephony/UC/Collaboration
    • Cable
    • Mobility & Wireless
    • Fiber/Ethernet
    • Data Centers
    • Backup & Disaster Recovery
    • IoT
    • Desktop
    • Artificial Intelligence
    • Analytics
  • Strategy
    • Back
    • Mergers and Acquisitions
    • Channel Research
    • Business Models
    • Distribution
    • Master Agents
    • Sales & Marketing
    • Best Practices
    • Vertical Markets
    • Regulation & Compliance
    • Diversity & Inclusion
  • MSSP Insider
  • MSP 501
    • Back
    • Apply Now
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Galleries
    • Podcasts
    • Videos
    • From the Industry
    • Reports/Digital Issues
    • Webinars
    • White Papers
    • Channel Educational Series
  • EMEA
  • Channel Chatter
    • Back
    • People on the Move
    • New/Changing Channel Programs
    • New Products & Services
    • Industry Honors
    • Channel Convergence
  • Resources
    • Back
    • Advisory Boards
    • Industry Organizations
    • Our Sponsors
    • Content Resources
  • Awards
    • Back
    • 2021 MSP 501
    • Circle of Excellence
    • Excellence in Digital Services
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
    • Industry Events
  • DE&I
    • Newsletter
  • REGISTER
  • MSPs
  • VARs / SIs
  • Agents
  • Cloud Service Providers
  • Channel Partners Events
 Channel Futures

Security


Malware

Webroot: Beware the Worst Malware of 2018

  • Written by Edward Gately
  • October 30, 2018
Criminals are quickly moving to cryptomining and cryptojacking for faster, less risky ways of netting cryptocurrency.

Ransomware takes a backseat to botnets and banking trojans, and cryptomining and cryptojacking on Webroot‘s latest “nastiest malware” list.

The list highlights the top cyberattacks of 2018. Webroot also recently revealed the top five riskiest states when it comes to cybersecurity practices.

Webroot's Tyler Moffitt

Webroot’s Tyler Moffitt

“This year, we’ve seen cyberattacks changing faster than ever, evading traditional defenses and wreaking havoc on businesses and everyday internet users alike,” said Tyler Moffitt, Webroot’s threat research analyst. “From gaping security holes, such as unsecured remote desktop protocol (RDP), to tried-and-true tactics like phishing and exploits, to stealing crypto in the form of CPU power, cybercriminals are exploiting vulnerabilities in increasingly malicious ways. Businesses and individuals must be vigilant, stay informed, and focus on improving their overall cyber hygiene to avoid the devastating effects of these attacks.”

Botnets and banking trojans are the most commonly seen type of malware, with Emotet being the most prevalent and persistently seen to date, according to Webroot. Emotet, which delivers banking trojans, aspires to increase the number of zombies in its spam botnet, with a concentration on credential gathering. Threat actors recently developed a universal plug and play (UPnP) module that allows Emotet to turn victims’ routers into potential proxy nodes for their command-and-control infrastructure.

Trickbot follows a similar attack plan, but contains additional modules (with more added each day) and has even been seen dropping ransomware. Also, Zeus Panda has similar functionality to Trickbot, but has more interesting distribution methods including macro-enabled Word documents, exploit kits and even compromised remote monitoring and management services.

Criminals are quickly moving to cryptomining and cryptojacking for faster, less risky ways of netting cryptocurrency, Webroot said; however, what some may call a victimless crime has a significant impact for businesses and consumers alike.

GhostMiner’s distribution method is the scariest part for its victims because they don’t know its entry point. WannaMine’s Windows management instrumentation (WMI) persistence technique allows it to remain stealthy, and difficult to find and remove.

Coinhive, initially innocent, was quickly added to the standard toolkit for attackers compromising websites. Even legitimate website owners are using Coinhive without knowing the impact it will have on their visitors. If your computer processing power spikes to 100 percent when simply visiting a website, it might be Coinhive.

And while overtaken by the rise of cryptomining, ransomware has become a more targeted business model for cybercriminals, with unsecured RDP connections becoming the focal point of weakness in organizations and a favorite port of entry for ransomware campaigns.

The three “nastiest” ransomware are: Crysis/Dharma, which specifically targets the RDP vector; GandCrab, which is distributed via malspam campaigns, exploit kits and RDP; and SamSam, which now is bringing down entire cities or at least portions of them.

Tags: Agents Security

Related


  • Secure Web Gateway Remote Worker
    Comcast Business Enhances Security, Taps Palo Alto for SASE VNF
    Comcast expanded its ActiveCore SDN platform with a new VNF.
  • Deadline
    7 Hot Stories: Big UCaaS Dispute, Sierra Ransomware, Telarus M&A and the End of an Era
    It's our final weekly wrap before the big convergence.
  • Computer network connection modern city future technology
    SASE Takes: Service Providers Mull SD-WAN Complexity as Comcast, Versa Enhance AI Capabilities
    The next generation of our SD-WAN roundup is here to stay.
  • Call center remote worker
    Fusion Connect Brings SD-WAN, Security, Remote Access Together
    Fusion's portolio update merges multiple functions onto a single device.

Leave a comment Cancel reply

-or-

Log in with your Channel Futures account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • Versa SASE Solution Targets Lean IT Departments
  • RingCentral Buying Kindite for Enhanced Security Capabilities
  • Convergence in the Channel: Is It Happening, and What Does This Mean for MSPs?
  • AT&T Eyes Managed SASE, Harnesses Fortinet Partnership

Galleries

View all

10 Ways to Keep Customers Safe with Threat Protection by Year’s End

April 9, 2021

Industry Perspectives

View all

Why Every MSP Should Consider TCO When Selecting a BCDR Solution

April 9, 2021

6 Ways to Ready Your Customers for 5G Security Challenges

April 5, 2021

Endpoint Security Is Huge in the Merging New World of Work

April 2, 2021

Webinars

View all

Top 3 Intel Security Technologies To Help Against Advanced Cybercrime Attacks

April 15, 2021

What to Look For: 2021 Threat Report

April 22, 2021

Health Care and SD-WAN: A Seller’s Guide

April 27, 2021

White Papers

View all

Top Tips: How Resellers Can Leverage Rackspace to Enhance Customer’s Cyber Security Protection with Microsoft 365 Security

March 30, 2021

Top Tips: Optimize Your Microsoft 365 Investment with Rackspace Technology

March 30, 2021

The Smart Approach to Cloud Workload Placement Decisions

March 19, 2021

Upcoming Events

View all

Channel Partners Conference & Expo

November 1, 2021 - November 4, 2021

MSP Summit

November 1, 2021 - November 2, 2021

Channel Evolution Europe

November 30, 2021 - December 1, 2021

Videos and Fastchats

View all

FASTCHAT: How Fortinet Reduces Complexity Through Networking, Security

Strong Customer Experience Needs Strong Partner Experience

December 22, 2020

Happy Holidays from Channel Partners & Channel Futures!

December 21, 2020

2021 Excellence in Digital Services Awards App Open

December 9, 2020

Twitter

ChannelFutures

"Who could ask for more?? These guys bring an awesome energy and always highlight the need-to-know of the channel..… twitter.com/i/web/status/1…

April 10, 2021
ChannelFutures

Anti-Asian racism, and racism and discrimination of all forms, have zero place in our society. #StopAsianHate and t… twitter.com/i/web/status/1…

April 9, 2021
ChannelFutures

MSSP @inc_renaissance promotes Trish Kapos to channel chief. #cybersecurity dlvr.it/RxLQ6g https://t.co/oWCdHeRqIW

April 9, 2021
ChannelFutures

.@GetSpectrum ordered to pay @Windstream more than $19 million for deceptive mailer. #lawsuit… twitter.com/i/web/status/1…

April 9, 2021
ChannelFutures

.@Percona says channel can help with #opensource solutions and #databases for everything from aspirational to must-… twitter.com/i/web/status/1…

April 9, 2021
ChannelFutures

Our latest #Cybersecurity Roundup features @HuntressLabs on @Microsoft Exchange exploitation, @ptsecurity,… twitter.com/i/web/status/1…

April 9, 2021
ChannelFutures

.@SemperisTech unveils first branded partner program. #cybersecurity dlvr.it/RxH4Bq https://t.co/TVjG8xhGNv

April 8, 2021
ChannelFutures

.@PerchSecurity announces its 2021 MSP Threat Report, calling on MSPs to build a mature cybersecurity practice.… twitter.com/i/web/status/1…

April 8, 2021

MSSP Insider

Business advice for MSSPs and news from the broader security channel.

Newsletters and Updates

Sign up for The Channel Report, Channel Futures Update, MSP 501 Newsletter and more.

Live Channel Events

Get the latest information on the next industry-leading Channel Partners event.

Galleries

Educational slide shows and images from live events.

Media Kit And Advertising

Want to reach our audience? Access our media kit.

DISCOVER MORE FROM INFORMA TECH

  • Channel Partners Events
  • Telecoms.com
  • MSP 501
  • Black Hat
  • IoT World Today
  • Omdia

WORKING WITH US

  • Contact
  • About Us
  • Advertise
  • Newsletter

FOLLOW Channel Futures ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookie Policy
  • Terms
Copyright © 2021 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X