Origin of the infections and attacks during the first quarter of 2014
Blueliv has analyzed the main Cyber Threats which have been apparent on a global level during the first quarter of 2014, and in this post we are going to show their origin.
MALICIOUS URL GEOLOCALIZATION
Some 46% of the malicious URLs analyzed were geolocalized in the United States, while China hosted a further 30% of them.
CC BOTNET ORIGIN
In respect of botnets, the number of localized control panels has risen slightly. In general, the majority of the countries that host the control servers which receive the captured data do not correspond with the countries attacked, but this quarter, similarly to to previous periods, the United States once again heads the list of botnet source countries, with 47% of the servers hosted there. It is followed by the European Union, with 26% of the total.
As for the types of malware, Citadel and Zeus continue to prove the most popular, with 48% and 36% respectively. This is only logical given the ease with which they can be acquired and used, with no need for expert knowledge to operate them. Iceix’s share also bears considerable weight, with 10% of the total.
On this point, however, the increase of malware samples intended to infect Point of Sale Terminals is worthy of mention, as this figure has multiplied five-fold this quarter. Attacks on mobile devices have also increased, with the figure tripling.
This new tendency is due to the fact that the financial sector spends months implementing measures which make the work of cyber criminals difficult, and the latter have multiplied in such a way that there are now too many competitors vying for the same objectives. Cyber criminals are exploring new ways to infect devices such as POS terminals and mobile devices, based on the 4 following variables: the ease with which fraud can be committed, the ease with which their activity can be turned into money, the risk assumed and the possibility of automating the attack to make it profitable.
A User does not have the obligation to accept Cookies and may voluntarily opt-out, but without accepting them the User may experience reduced Site functionality. If the User should wish to reject the cookies it should read the information contained in User’s browser software to see how to turn-off the automatic download feature. For more information about cookies, including how to set the internet browser to reject cookies, User is invited to access the following website: www.allaboutcookies.org.
BLUELIV is currently using the following Cookies in accordance with the instructions and information specified herein:
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
The cookie is used by cdn services like CloudFare to identify individual clients behind a shared IP address and apply security settings on a per-client basis. It does not correspond to any user ID in the web application and does not store any personally identifiable information.
This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
This cookie is used for the function of Google Analytics. The cookie store the visitor-level custom variable data.
This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visted in an anonymous form.
This is set by Hotjar to identify a new user’s first session. It stores a true/false value, indicating whether this was the first time Hotjar saw this user. It is used by Recording filters to identify new user sessions.
This cookie is set by Hotjar. This cookie is set when the customer first lands on a page with the Hotjar script. It is used to persist the random user ID, unique to that site on the browser. This ensures that behavior in subsequent visits to the same site will be attributed to the same user ID.
1 year 1 month
The cookie is set by addthis.com to determine the usage of Addthis.com service.
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
This cookie is a browser ID cookie set by Linked share Buttons and ad tags.
1 year 24 days
Used by Google DoubleClick and stores information about how the user uses the website and any other advertisement before visiting the website. This is used to present users with ads that are relevant to them according to the user profile.
1 year 1 month
This cookie is set by Addthis. This is a geolocation cookie to understand where the users sharing the information are located.
This cookie is set by twitter.com. It is used integrate the sharing features of this social media. It also stores information about how the user uses the website for tracking and targeting.
This cookie is set by doubleclick.net. The purpose of the cookie is to determine if the user's browser supports cookies.
5 months 27 days
This cookie is set by Youtube. Used to track the information of the embedded YouTube videos on a website.