Learn about Zero Trust Architecture
Impenetrable cybersecurity without sacrificing usability
Gain detailed visibility into all your endpoints activities
Harden applications and hardware environments
Immediate and continuous response to incidents
Close the window of time your data could be exposed
Get your Comodo solutions setup, deployed or optimized
Control access to malicious websites
Defend from any internet based threats
Stop email threats before it enters your inbox
Preserve and protect your sensitive data
Keep your website running fast and malware free
Add encryption to your websites
Automated certificate mgmt. platform
Secure private intranet environments
Digital signature solutions for cloud apps
Encrypt emails for senders and recipients
Stay compliant with PCI DSS
Trusted authentication for IoT devices
Francisco Partners a leading technology-focused private equity fund, has acquired a majority stake in Comodo’s certificate authority business. Newly renamed from Comodo CA Limited to Sectigo Limited. Privacy Policies, Trademarks, Patents and Terms & Conditions are available on Sectigo Limited’s web site.
Meet the people behind the direction for Comodo
Get the latest news about Comodo
People are the key to achievement and prosperity
Stay up to date with our on-demand webinars
Worldwide: Sales, Support and General Inquiries
Schedule a live demonstration of our solutions
Need immediate help? Call 1-888-551-1531
Instantly removes viruses to keep your PC virus free
Experience true mobile security on your mobile apple devices
Secure Internet Browser based on Chrome
Chrome browser internet security extension
Submit a ticket to our support team
Share any product bugs or security flaws
Collaborate with research experts on data sets
Valkyrie Threat Intelligence Plugins
Valkyrie Threat Intelligence APIs
The second quarter 2018 Comodo Cybersecurity Global Threat Report has just been released! I couldn’t wait to read it, and I’m glad I did. It’s my job to keep on top of the rapidly evolving cyber threat landscape, but I was still surprised by what I learned. I’ll tell you which findings were the most interesting to me. But if you want to learn more, you may download the free report for yourself. This intelligence comes from the over 400 million unique malware samples worldwide that Comodo has detected during the second quarter of the year.
An International Perspective
Trojan malware infections are on the rise. Comodo has noticed a trend in phishing emails that spread trojans through attachments and hyperlinks. Once the user is fooled to open an attachment or click on a link, the trojan infection becomes a malicious foot-in-the-door for a payload that’s often delivered through command and control servers. Of all of the countries where Comodo monitors malware, Germany topped the list for trojans.
Malware trends often correlate with world events, so your time reading about them is time well spent. The anniversary of China’s Tiananmen Square protests, Donald Trump and Vladimir Putin’s meeting in Helsinki, Finland, Armenia’s political revolution, and the tension between Donald Trump and Kim Jong Un all were reflected in malware infection trends which were unlikely to be coincidences. Often these trends are the result of cyberwarfare, and other times hacktivism is a likely motive.
Cryptominers have become a little less frequent, but often a lot more harmful. Many of the latest cryptomining malware has impressive evasion and persistence techniques. Maybe the only symptom you’ll notice from a cryptominer infection is an unusual demand on your client’s CPU and memory. That really worries me.
Android is now one of the top platforms for malware. The Cyber Security Report from Comodo Threat Research Labs has seen a tremendous increase in both quantity and variety. Be really, really careful about sideloading Android apps. You probably should only download APKs from the Google Play Store in order to decrease your risk. Phishing emails and websites are another common source of Android malware. Spyware is the most common type of Android malware, and Comodo has noticed it becoming better at evading detection.
Ukraine and Russia were the most common countries for viruses, India, Turkey, and Russia (again!) for worms, and the United Kingdom for backdoors.
The Worst Trojan
The single most common trojan found in the second quarter is TrojWare.Win.32.Injector. It has been found to be spread by phishing. More specifically, an email that’s designed to look like it’s from a shipping and trading company. If the user executes the malicious file that it comes with, sensitive data from web browsers, email clients, FTP clients, WebDav, and SCP clients are sent to the cyber attacker.
Sneakier Cryptominers
I mentioned that newer cryptominers are getting better at evading detection. That’s often because fileless cryptominers are becoming more common. Fileless malware runs in a target’s CPU and memory without leaving a trace on a HDD or any other sort of data storage. Instead, fileless malware will inject itself into already running processes. So scanning your hard drive won’t find these rotten, pesky things.
BadShell is a cryptominer which fits the above criteria exactly. It exploits Windows’ PowerShell where commands are executed, puts malicious binaries in the Windows registry, and persists through Task Scheduler.
BadShell and other cryptominers can do serious harm to an organization’s network by delegating computer processing power to generating cryptocurrency rather than the activities your organization needs your clients and servers to be engaged in.
The Android Malware Explosion
People like me use our Android phones to organize our lives. I schedule my weeks for business and leisure, do my online banking, buy stuff, check the weather reports from my nearest weather station, plan my public transit travel, and read my email all with my Android phone. There are millions of users like me, and that’s why Android is a popular platform for spyware. Acquiring my phone’s private data would tell you so much about me and my life! And I’m just an ordinary person, really. If I was a prominent CEO or other sort of public figure, data acquired from me could be sold by cyber attackers for big bucks on the Dark Web.
Some of the most common Android spyware detected by Comodo includes KevDroid, Zoo Park, MikeSpy, and Stalker Spy.
I’m just skimming the surface of the valuable insights you can learn from Comodo Cybersecurity’s Global Threat Report Q2 2018. If I piqued your curiosity, you can download your own copy of the report.
Tags: Comodo Threat Intelligence Lab,cyber threat,cybersecurity
Reading Time: 4 minutes Increased dependency on computers and access to data makes an organization more vulnerable to cybersecurity threats. With the increase in cyber-criminals and cyber-attacks, many companies today are looking for greater protection of their decentralized computing work environments from their Managed Service Providers (MSPs). As a result, MSPs need to deliver firewall solutions that are designed…
Reading Time: 3 minutes Disruptions are often unforeseen. This could be a catastrophic event like a hurricane, a fire, or an earthquake. Disruptions, however, can also come in other forms such as that of a pandemic. This means that a building doesn’t necessarily have to be demolished or lives have to be lost for an unforeseen event to completely…
Reading Time: 4 minutes There should be no doubt in anyone’s mind that the coronavirus pandemic will reshape our education systems. It has already altered how students around the world learn and share knowledge with their peers in just a matter of months. Those changes can give insight into how education will progress in the long run, for better…
Sign up to our cyber security newsletter
Comodo Cybersecurity would like to keep in touch with you about cybersecurity issues, as well as products and services available. Please sign up to receive occasional communications. As a cybersecurity company, we take your privacy and security very seriously and have strong safeguards in place to protect your information.
agreecheck
See how your organization scores against cybersecurity threats
Advanced Endpoint Protection, Endpoint Detection and Response Built On Zero Trust Architecture available on our SaaS EPP