Story image

APAC the highest risk spot for malware encounters, says Microsoft report

01 Feb 17

Asia Pacific countries have serious work to do when it comes to protecting themselves against malware – in fact, the region is one of the highest risk areas when it comes to cybersecurity threats.

Those are the figures from a regional biannual report from Microsoft Asia, titled Security Intelligence Report (SIR), Volume 21, which warned that Asia Pacific and emerging areas take out three out of the top five global spots for malware encounters.  

The two main risk points are in Southeast Asia, specifically Vietnam and Indonesia – as they both have malware encounter rates of more than 45%, the report says.  This is double the worldwide average of 21%.

Other countries in the top 10 include Mongolia, Thailand, Pakistan, the Philippines and India, all featuring encounter rates of more than 30%.

Other established regions such as Australia, New Zealand, Singapore and Japan have malware rates that are below the worldwide average, which Microsoft says is reflective of the ‘diverse cybersecurity landscape’.

The most featured malware threats include:

Dynamer: A Trojan that can steal personal information, download malware or provide access for hackers.

Gamarue: A malicious worm that gives hackers control of a PC, allowing them to steal information and change PC security settings. This worm has been the most commonly encountered non-generic threat worldwide, with strong hit rates in India and Indonesia. These countries accounted for 25% of all Gamarue encounters.

Lodbak: A Trojan that is installed on removable drives by Gamarue.  It also installs Gamarue when the drive is plugged into a computer.

Keshav Dhakad, Microsoft Asia’s regional director, digital crimes unit, says the increase in malware attacks is now ‘mission critical priority’, and can take up to 200 days for attacks to be truly visible.

“With no sign of abatement in the future, what companies need is a Secure Modern Enterprise posture, which involves well-integrated “Protect-Detect-Respond” investments and capabilities, with a strategic focus on the core pillars – Identity, Apps, Data, Infrastructure and  Devices,” Dhakad says.

He says organizations should also consider cloud-based services for enterprise-grade security, privacy, assurances and certifications.

The report analysed threat information for more than one billion systems worldwide, analysing both long term trend data and threat profiles for more than 100 markets and regions.

Microsoft Asia says that there are five best practices for preventing malware infections.

Use genuine, current and updated software. Anything that is not any of these things will increase chances of a cyber attack.

Maintain proper cyber hygiene. Password protection, high credentials and more control over personal devices can lower the risk of infection.

Create a data culture. Big data analytics, classification, multifactor authentication, encryption, machine learning and other tools can provide clues to impending attacks.

Invest in real-time monitoring and a robust cyber defence ecosystem. These can monitor, detect and remove threats in real time, while developing in-house expertise for threat analytics.

Assess, review and audit. These steps involve a trusted IT supply chain across BYOD, cloud, hardware, Internet of Things and software. In addition, reviewing network access, security assessments and deployments can help organizations keep track of cyber protection effectiveness.

Disruption in the supply chain: Why IT resilience is a collective responsibility
"A truly resilient organisation will invest in building strong relationships while the sun shines so they can draw on goodwill when it rains."
Businesses too slow on attack detection – CrowdStrike
The 2018 CrowdStrike Services Cyber Intrusion Casebook reveals IR strategies, lessons learned, and trends derived from more than 200 cases.
What disaster recovery will look like in 2019
“With nearly half of all businesses experiencing an unrecoverable data event in the last three years, current backup solutions are no longer fit for purpose."
Proofpoint launches feature to identify most targeted users
“One of the largest security industry misconceptions is that most cyberattacks target top executives and management.”
McAfee named Leader in Magic Quadrant an eighth time
The company has been once again named as a Leader in the Gartner Magic Quadrant for Security Information and Event Management.
Symantec and Fortinet partner for integration
The partnership will deliver essential security controls across endpoint, network, and cloud environments.
Is Supermicro innocent? 3rd party test finds no malicious hardware
One of the larger scandals within IT circles took place this year with Bloomberg firing shots at Supermicro - now Supermicro is firing back.
25% of malicious emails still make it through to recipients
Popular email security programmes may fail to detect as much as 25% of all emails with malicious or dangerous attachments, a study from Mimecast says.