Kaspersky Lab\u2019s quarterly IT Threat Evolution report is in and so is Kaspersky DDoS Intelligence Report for Q3 2015. Let\u2019s take a look into what happened this last quarter.<\/p>\n
Key findings<\/strong><\/p>\n Quarterly IT #Security reports: a roundup<\/p>Tweet<\/a><\/blockquote>\n APTs and other targeted attacks<\/strong><\/p>\n Q3 report (available at Securelist) specifically highlights recent research in Turla APT (which proved to become \u201cspaceborne\u201d \u2013 attackers are actively using satellites). There was also an update on Darkhotel APT (which expanded its area of operation to include victims in a number of countries, including both Koreas, Russia, Japan, Bangladesh, Thailand, India, Mozambique and Germany. In August there was a fresh report on Blue Termite \u2013 a targeted attack campaign focused on stealing information from organizations in Japan.<\/p>\n Also a Coinvault ransomware campaign was brought down, with its suspected operators arrested.<\/p>\n DDoS<\/strong><\/p>\n In Q3, DDoS attacks remained a highly localized phenomenon: 91.6% of victims resources are located in only 10 countries around the world, although overall attacks happened in 79 countries. Most of the time DDoS attacks originate from the same country where the victims are located.<\/p>\n The 320 hours-long DDoS attack mentioned above is indeed a particularly noticeable event whereas more than 90% of attacks lasted less than 24 hours in Q3. Still, there is an apparent growth in the number of attacks lasting over 150 hours.<\/p>\n Linux-based botnets began to play a significant part, accounting for up to 45.6% of all attacks recorded by Kaspersky Lab. The main reasons include poor protection and higher bandwidth capacity.<\/p>\n And last, but not least, banks are reported to be frequent targets of complex attacks and ransom demands in Q3, which isn\u2019t really surprising.<\/p>\n Cybercriminals zeal depends on the attacks success rate #protectmybiz<\/p>Tweet<\/a><\/blockquote>\n Responsibility<\/strong><\/p>\n Both reports are full of massive figures, showing that overall situation is unlikely to improve any time soon. In fact, as the cybercrime has completely become financially-driven, there will be more and more malware and other threats of various quality and efficiency. This \u201carms race\u201d is likely to go on forever: malware writers will create new nasty things, security vendors will pin and tag them.<\/p>\n Then there is a third party which is even more responsible for overall security: businesses and consumers.<\/p>\n Because they are in reticle of cybercriminals, they are getting attacked, and the success rate of those attacks depends how much cybercriminals are encouraged (or discouraged) to keep going.<\/p>\n There is a sort of simplification, of course, as\u00a0there is no linear dependence. But the companies using mature and well-tested security solutions, and who have established proper information access and security policy are way less likely to experience a successful attack on their infrastructure and lose data.<\/p>\n Take a look at the Q3 Threat Evolution report here<\/a>.<\/p>\n The latest quarterly DDoS report is available here<\/a>. It is based on data from the DDoS Intelligence system, part of Kaspersky DDoS Protection. Learn more about the product here<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":" Kaspersky Lab’s quarterly IT Threat Evolution report is in and so is Kaspersky DDoS Intelligence Report for Q3 2015. Let’s take a look into what happened this last quarter.<\/p>\n","protected":false},"author":209,"featured_media":15370,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1999,3052],"tags":[1058,2234,2356,2235],"class_list":{"0":"post-15112","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-business","8":"category-smb","9":"tag-ddos","10":"tag-q3","11":"tag-quarterly-report","12":"tag-threat-evolution"},"hreflang":[{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/quarterly-it-security-reports-a-roundup\/15112\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/quarterly-it-security-reports-a-roundup\/15112\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/quarterly-it-security-reports-a-roundup\/15112\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/www.kaspersky.com\/blog\/tag\/ddos\/","name":"ddos"},"_links":{"self":[{"href":"https:\/\/www.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts\/15112","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kaspersky.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com\/blog\/wp-json\/wp\/v2\/users\/209"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com\/blog\/wp-json\/wp\/v2\/comments?post=15112"}],"version-history":[{"count":3,"href":"https:\/\/www.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts\/15112\/revisions"}],"predecessor-version":[{"id":33592,"href":"https:\/\/www.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts\/15112\/revisions\/33592"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com\/blog\/wp-json\/wp\/v2\/media\/15370"}],"wp:attachment":[{"href":"https:\/\/www.kaspersky.com\/blog\/wp-json\/wp\/v2\/media?parent=15112"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kaspersky.com\/blog\/wp-json\/wp\/v2\/categories?post=15112"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kaspersky.com\/blog\/wp-json\/wp\/v2\/tags?post=15112"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}\n