Site icon TechArena

Check Point’s Threat Index for February 2024 Highlights Main Threats in Local and Global Cybersecurity Landscape

AON Cyber risk kenya

AON Cyber risk kenya

Check Point has announced insights from its Global Threat Index for February 2024, shedding light on the cybersecurity landscape across Africa, with a particular focus on South Africa. The report reveals a concerning surge in cyber threats targeting websites and key industries, underlining the critical need for heightened cybersecurity measures.  The top three African industries targeted in February were utilities, manufacturing and consultancies respectively.

FakeUpdates, also known as SocGholish, has been operational since at least 2017, and uses JavaScript malware to target websites, especially those with content management systems. Often ranked the most prevalent malware in the Threat Index, the FakeUpdates malware aims to trick users into downloading malicious software and despite efforts to stop it, it remains a significant threat to website security and user data. This sophisticated malware variant has previously been associated with the Russian cybercrime group known as Evil Corp. Due to its downloader functionality, it is believed that the group monetizes the malware by selling access to the systems that it infects, leading to other malware infections if the group provides access to multiple customers.

“Websites are the digital storefronts of our world, crucial for communication, commerce, and connection,” stated Maya Horowitz, VP of Research at Check Point Software. “Defending them from cyberthreats isn’t just about safeguarding code; it is about protecting our online presence and the essential functions of our interconnected society. If cybercriminals choose to use them as a vehicle to covertly spread malware, that could impact future revenue generation and the reputation of an organization. It is vital to put preventative measures in and adopt a culture of zero tolerance to ensure absolute protection from threats”.

Key Findings from South Africa

Top Malware Families:

Emerging Threats

Noteworthy Trends

The report highlights the persistence of ransomware groups like Lockbit3 and the emergence of Play ransomware in the top three most sought-after ransomware groups.

Vulnerabilities in web servers, including directory traversal and command injection, remain highly exploitable, affecting 51% of organisations globally.

Also Read: Check Point Introduces Harmony SaaS for Prevention Against SaaS-Based Threats

Insights from Other African Countries

Top exploited vulnerabilities globally 

Last month, “Web Servers Malicious URL Directory Traversal” was the most exploited vulnerability, impacting 51% of organizations globally, followed by “Command Injection Over HTTP” and “Zyxel ZyWALL Command Injection” with a global impact of 50% respectively.

Top Mobile Malwares Globally

Last month Anubis remained in first place as the most prevalent Mobile malware, followed by AhMyth and Hiddad.

Top-Attacked Industries Globally

Last month, Education/Research remained in first place in the attacked industries globally, followed by Government/Military and Healthcare.

Maya Horowitz, VP of Research at Check Point Software, emphasized the urgent need for organizations to bolster their cybersecurity posture, given the evolving threat landscape. She urged proactive measures to safeguard against emerging threats and protect critical digital assets.

Also Read: A Look into Kenya’s Cyber Security Landscape with Check Point

Exit mobile version