Express Computer
Home  »  News  »  53 percent of devices infected with data-stealing malware are corporate, Kaspersky finds

53 percent of devices infected with data-stealing malware are corporate, Kaspersky finds

0 39

The share of corporate devices compromised with data-stealing malware has increased by one-third since 2020, according to Kaspersky Digital Footprint Intelligence. 21 percent of employees whose devices were infected ran the offending malware repeatedly. In response to the escalating threat of infostealers targeting corporate users, the Kaspersky Digital Footprint Intelligence team is raising awareness of the issue and offering strategies to mitigate the associated risks.

Kaspersky has revealed a concerning trend: corporate devices are facing a growing threat from infostealers. According to data extracted from data-stealing malware log files available on the dark web, the share of corporate users compromised with such malware has increased by 34 percentage points since 2020.

In 2023, experts concluded that every second device (53%) infected with credential-stealing malware was corporate, based on data indicating that the biggest share of infostealer infections was found in the Windows 10 Enterprise version. The diagram below illustrates the distribution of infections among various editions of Windows 10, spanning from 2020 to 2023.

Distribution of infections across affected Windows 10 versions, 2020–2023

After infecting a single device, cybercriminals can gain access to all accounts – both personal and corporate. According to Kaspersky statistics, one log file contains credentials with a corporate email as a login to an average of 1.85 corporate web applications, including webmail applications, customer data processing systems, internal portals, and more.

“We were curious to know if corporate users re-open malware, thereby allowing cybercriminals to access data collected from a previously infected device without needing to infect it again,” comments Sergey Shcherbel, expert at Kaspersky Digital Footprint Intelligence. “To investigate this, we examined a sample of log files containing data likely related to 50 banking organisations across various regions. We found 21 percent of employees reopened the malware again, and 35 percent of these reinfections occurred more than three days after the initial infection. This may indicate several underlying issues, including insufficient employee awareness, ineffective incident detection and response measures, a belief that changing the password is sufficient if the account has been compromised, and a reluctance to investigate the incident.”

More information about the infostealer threat landscape can be found at the Kaspersky Digital Footprint Intelligence website. To minimise the impact of a data leak caused by infostealer activity, we suggest you follow these steps:

-Change passwords for compromised accounts immediately and monitor them for suspicious activity;

-Advise potentially infected users to run antivirus scans on all devices and remove any malware;

-Monitor dark web markets for compromised accounts to detect compromised accounts before they affect the cybersecurity of customers or employees. A detailed guide on setting up monitoring can be found here;

-Utilize Kaspersky Digital Footprint Intelligence to detect potential threats and take prompt action.

For enhanced protection against infostealer infections, develop an employee security awareness program, and offer regular training and assessments.

Get real time updates directly on you device, subscribe now.

Leave A Reply

Your email address will not be published.

LIVE Webinar

Digitize your HR practice with extensions to success factors

Join us for a virtual meeting on how organizations can use these extensions to not just provide a better experience to its’ employees, but also to significantly improve the efficiency of the HR processes
REGISTER NOW 

Stay updated with News, Trending Stories & Conferences with Express Computer
Follow us on Linkedin
India's Leading e-Governance Summit is here!!! Attend and Know more.
Register Now!
close-image
Attend Webinar & Enhance Your Organisation's Digital Experience.
Register Now
close-image
Enable A Truly Seamless & Secure Workplace.
Register Now
close-image
Attend Inida's Largest BFSI Technology Conclave!
Register Now
close-image
Know how to protect your company in digital era.
Register Now
close-image
Protect Your Critical Assets From Well-Organized Hackers
Register Now
close-image
Find Solutions to Maintain Productivity
Register Now
close-image
Live Webinar : Improve customer experience with Voice Bots
Register Now
close-image
Live Event: Technology Day- Kerala, E- Governance Champions Awards
Register Now
close-image
Virtual Conference : Learn to Automate complex Business Processes
Register Now
close-image