What were the findings of Bitdefender?
Bitdefender released a Ransomware Report which analysed malware detections collected in July 2022 from its static anti-malware engines. The report looks at detections, rather than infections, and counts total cases, not how monetarily significant the impact of infection is.
It identified 205 ransomware families in July, with the number of detectedfamilies varying each month depending on the current ransomware campaigns in different countries. WannaCry was the most widely detected family, at 37%. Robin came in second at 20%.
In total, the company (Bitdefender) detected ransomware from 151 countries in its dataset this month as ransomware continues to be a threat that touches almost the entire world.
Many ransomware attacks continue to be opportunistic, and the size of population is correlated to the number of detections. The United States was the most impacted by ransomware, accounting for 24%, followed by Brazil at 17% and India at 14%.
The cybersecurity solutions company also analysed the top 10 trojans targeting Android the company has seen in its telemetry during July. Downloader.DN – repacked applications taken from Google App Store and bundled with aggressive adware – was the biggest trojan targeting Android at 43%, followed by SMSSend.AYE – malware that tries to register as the default SMS app on the first run by requesting the user’s consent of the user – at 33%.
Bitdefender analysed homograph attacks, which work to abuse international domain names (IDN). Threat actors create international domain names that spoof a target domain name.
A ‘target’ of IDN homograph phishing attacks refers to the domain that threat actors are trying to impersonate. Blockchain.com was by far the most common, accounting for 58% of attacks, with facebook.com, binance.com, paypal.com, and gmail.com among the others.
To access the full report, see here.