Attacks Aimed at Companies Report By PandaLabs

PANDA The Cloud Security Company C URITY ATTACKS AIMED AT COMPANIES > The latest quarterly report by PandaLabs, Panda Security's anti-malware laboratory, shows how companies and their confidential business information are the prime target for cyber-thieves. MOST IMPORTANT EXAMPLES Cyber-crime Dropbox Dropbox Customer data were compromised and starting to receive SPAM. REUTERS Reuters Two Hacker attacks on its blogging platform, and false information about current news was published. BIZZARD Blizzard Its platform battle.net was hacked and emails and encrypted passwords were stolen. AT Adobe Adobe Company's internal servers were attacked by hackers to be able to sign their malware with a valid digital certificate from Adobe. kt KT Corp Data breach which exposed personal information of over 8,7 million customers. Convictions of cyber-crime Junaid Hussain, (United Kingdom) sentenced to six months in prison guilty to hacking into Gmail account of former UK Prime Minister Tony Blair. Joshua Schictel (United Stated) received a 30-months prison sentence for hijacking 72,000 computers and installing malware on those computers in exchange of money. Cyber-war and cyber-espionage In Morocco, a group of independent journalists who received an award from Google for their efforts during the Arab Spring revolution, were infected with a Mac Trojan. In China, a group of foreign correspondents was tar- geted by two malware attacks via email a few weeks before the Congress of the Chinese Communist Party. Saudi Aramco was hit by a malware infection that led the company to severe its connections to the Internet as a preventive measure. Some other energy company such as RasGas were also infected. Mobile malware Opera Mini Browser: Criminals offered the browser to users from a store other than Google's Play store. When the browser was installed, a Trojan was installed as well which sent SMS messages to premium- rate numbers. China Mobile: a Trojan was released that purchased applications from infected devices. The Trojan affected Chinese subscribers imore than 600 millioni. Once in- fected. the cell phone started buying applications from China Mobile's marketplace on behalf of the user. This Trojan was dellivered on nine unofficial app stores. Google Play Android Store: For two weeks a new malware strain was discovered hiding out posing as two known games until it was finally removed. MOST TARGETTED MOBILE PLATFORM: ANDROID Android allows its users to get their apps from anywhere they want. - Large number of users (more than 500 million) New malware samples detected In the third quarter of 2012 alone, more than six million new malware samples were detected by our laboratory; almost three out of every four new malware strains created was a Trojan. Trojans 72,58% Virus 3 of every 4 14,47% new malware samples strains created was Worms a Trojan. 10,53% Adware/Spyware 2,08% Other 0,34% Infections per type of malware According to the data gathered by our Collective Intelligence, Trojans once again topped the ranking. Its main objective is to steal confidential data. All this confirms cyber-crooks' first objective: to make money from their creations. Trojans 78,04% Virus Steal confidential data 6,56% Worms 6,53% motivo por el que se crean la mayoría de muestras de malware Adware/Spyware- 5,55% Others 3,32% Top Ten most infected countries CHINA 53,17% China 53,17% South Korea 52,77% Turkey 42,51% Slovakia 40,59% Taiwan 40,20% Romania 37,50% Bolivia 36,07% Poland 35,33% Guatemala 35,14% South Africa 34,57% Top Ten least infected countries Ireland 20% Ireland 20% Norway 20,16% Sweden 22,46% Switzerland 22,69% UK 22,72% Finland 23,26% Germany 23,57% Australia 23,67% Canada 24,33% Hungary 26,11% Panda Security tips • Have a security solution fully updated on all devices of the company • Have security policies and implement them efficiently within the company. • Be cautious in the transport and storage of business information •Use the company's mobile device for work, without sharing it with people outside the organization • Always use a private Internet connection PANDA The Cloud Security Company S E CURITY