What was in store in the first quarter? First Quarter 2022 Threat Overview

The threat landscape is more active than ever.

Over the past quarter, communications service providers using Allot Secure have seen several interesting new threats, including several threats that we thought were gone.

Here are three things we found:

  • Rise and Resurgence of Banking Trojans and Other Malware
  • Cryptocurrency trading scams
  • An explosion of adware

This is covered in depth in Allot’s latest Threat Bulletin.

A banking Trojan is a malicious computer program designed to gain access to privileged information in an online banking system. The Bian banking Trojan was first discovered in 2019 and then went silent. However, he is back. Allot security researchers have seen a resurgence since November 2021.

Allot researchers have identified several hundred thousand blocks of the Coper banking Trojan. First discovered in Colombia, it has spread to other parts of Latin America and has also been identified in Europe.

Allot researchers also identified and blocked the Emotet malware. EUROPOL, the European Union’s law enforcement agency, announced that it shut down the Emotet botnet in early January 2021. But it’s back.

Website spoofing is creating a fake website to mislead visitors into telling them that the website is different. The website generally has a similar design to the actual website.

For example, millions of CSP subscribers using Allot Secure have been protected against website spoofing from a popular cryptocurrency trading site, Gate.io.

The site’s popularity has made it a target for a lookalike site so that criminals can trick users into giving up their credentials.

Want to see what the real and fake site looks like? Read the threat bulletin.

The last few months have also seen an increase in adware. We have seen many cases of Fyben, targeting devices running Android. Although Fyben is not a new threat, security researchers at Allot have identified a significant increase in blockages.

For the full analysis and more details, see our March Threat Bulletin.

Comments are closed.