Positive Technologies keeps monitoring the most important IT security threats. Highlights of Q1 2020 presented by company include:
The number of cyberincidents is growing rapidly. In Q1 2020, there were 22.5 percent more attacks detected than in Q4 2019.
The share of targeted attacks remains unchanged from Q4 2019 (67%).
In Q1 2020, there were 23 very active APT groups. Their attacks targeted mostly government agencies, industry, finance, and medical institutions.
About 13 percent of all phishing emails of Q1 2020 were related to COVID-19. Of those, about a half (44%) targeted individuals. One out of every five mailings was sent to government agencies.
More than a third (34%) of all attacks on organizations using malware were attacks with ransomware. Sodinokibi, Maze, and DoppelPaymer were the most active ones. Operators of these and some other ransomware created their own websites where they publish stolen data if the victims refuse to pay the ransom.
The share of attacks against individuals was 14 percent. Logins and passwords make up half of the data stolen. This is because malware campaigns against individuals contained a large percentage of spyware (56%).