Microsoft reports decrease in ransomware attacks since September last year

Posted 15 February 2017 16:14 CEST by Jan Willem Aldershoff

Microsoft reports that the number of ransomware attacks on Windows computers has decreased. The company bases the information on data collected by Windows Defender, the built-in antivirus application in Windows. The software giant previously named ransomware as one of the largest threats of 2016 and millions of PCs were attacked (which included both attempts and actual infections) by the relative new type of malware.

From September last year the number of Windows computers that came in contact with ransomware has decreased. According to Microsoft this is because the emails used to distribute ransomware are blocked earlier by the spam filters of mail servers. This way users are no longer seduced to open files or follow links that lead to a ransomware infection.

 

Also the usage of exploit kits to distribute ransomware has decreased. With exploit kits cybercriminals try to infect users with ransomware through vulnerabilities in unpatched versions of Flash Player, Internet Explorer and Silverlight. Usage of exploitkit has decreased the last half year after the group behind the popular Angler exploit kit was arrested.

Microsoft warns that the threat of ransomware is not over, despite the decrease of ransomware attempts. Cybercriminals continue to try to infect regulars but have also expanded their working area to other platforms like servers. They also try new ways of distribution e.g. by using Skype or USB sticks.

The most popular ransomware variants that Microsoft detected are Locky, Tescrypt, Reveton, Cerber and Crowti and most attempts to infect users with the malware took place in the United States.



coolcolors
MyCE Resident
Posted on: 16 Feb 17 15:52
Quote:
Originally Posted by DoMiN8ToR
We've just posted the following news: Microsoft reports decrease in ransomware attacks since September last year[newsimage]http://www.myce.com/wp-content/image...ters-95x75.png[/newsimage]

Read the full article here: http://www.myce.com/news/microsoft-r...st-year-81465/

Please note that the reactions from the complete site will be synched below.
Guess something is working right....

Quote:
most attempts to infect users with the malware took place in the United States.
This come as no surprise in the day of click and satisfy one's ego.

Quote:
Microsoft warns that the threat of ransomware is not over, despite the decrease of ransomware attempts. Cybercriminals continue to try to infect regulars but have also expanded their working area to other platforms like servers.
This will never stop and be ongoing war but with hosts edits that will also stop redirects and attempt to load malware browser links. Also this is why one needs to migrate from outdated O/S like XP, Vista, and now going to be Windows 7 in 2020 for Internet usage if one wants to avoid become a zombie and botnet troll-oh and get rid of bloatware Norton, McAfee that does nothing but help malware infect more.
0 Agree

Xercus
Moderator
Posted on: 17 Feb 17 21:49
I would like to stress you all not to take this 'decline' too serious. The threat is very much there, but comes in waves. these days they seem to reform to encompass other platforms than Windows as well and so we can catch our breath at the moment.

We've seen ransomware targeting Linux and Mac in this period. We should take into account that the malware coders are no 'large' entity within the realm of computing, but still work steadily towards a new goal or perfecting an old which didn't pay off.

Instead of thinking now we're finally over it, we really ought to be thinking 'what are they up to these days' - and by searching the net for the latest threats across the board, we may be able to get closer to that answer.

Just my thoughts on the subject
0 Agree

Reactions closed

Sorry, you can't comment on this item anymore. It's either too old or comments are disabled for this post.

Myce.com settings

Several settings at Myce.com can be changed, they are stored in cookies, which means they will be reset if you clear Myce.com cookies

Background

Change the background to a plain color or trianglified image (similar to the default image)

No tracking features

At Myce most social media feature are done server side and impose no privacy risk to the visitor when not used. Several features use Javascript with you can turn off here

Layout

Switch to the List layout for an index with chronologycally listed news items or Grid layout for a block based layout. To see the change you need to reload the page

×