The number of new malicious files processed by Kaspersky Lab’s in-lab detection technologies reached 360,000 a day in 2017, which is 11.5% more than the previous year.
The number of new malicious files processed by Kaspersky Lab’s in-lab detection technologies reached 360,000 a day in 2017, which is 11.5% more than the previous year. After a slight decrease in 2015, the number of malicious files detected every day is growing for the second year in the row.
The number of daily detected malicious files reflects the average activity of cybercriminals involved in the creation and distribution of malware. This figure was calculated for the first time in 2011 and totaled 70,000 at that time. Since then it has grown five-fold, and as the 2017 data shows, it is still increasing.
Most of the files identified as dangerous fall into the malware category (78%). However, viruses – whose prevalence significantly dropped 5-7 years ago, due to their complex development and low efficiency - still constitute 14% of daily detections.
The remaining files are advertising software, which is not considered malicious by default, but in many instances can cause private information exposure and other risks. Protection against this kind of threat is essential for better user experience.
Approximately 20,000 of all dangerous files detected daily, are identified by Astraea – Kaspersky Lab’s machine-learning malware analysis system, which identifies and blocks malware automatically.
“In 2015, we witnessed a visible drop in daily detections and even started thinking that new malware could be less important for criminals, who have instead shifted their attention towards reusing old malware. However, over the last two years the number of new malware we discovered has been growing, which is a sign that interest in creating new malicious code has been revived. The explosive increase in ransomware attacks over the last couple of years is only set to continue, as there is a huge criminal ecosystem behind this type of threat, producing hundreds of new samples every day. This year, we have also seen a spike in miners - a class of malware that cybercriminals have started to use actively, in light of the ongoing rise in cryptocurrencies. The reason for the increase in detections could also be attributed to the constant improvements we are making in our protection technologies. With every new upgrade, we can identify more malware than before and this could account for a rise in numbers,” says Vyacheslav Zakorzhevsky, Head of Anti-Malware Team at Kaspersky Lab.
Other annual threat statistic highlights of 2017 include the following:
- Kaspersky Lab solutions repelled 1,188,728,338 attacks launched from online resources located all over the world.
- Kaspersky Lab’s web antivirus solution detected 15,714,700 unique malicious objects.
- 29.4% of user computers encountered an online malware attack at least once over the year.
- 22% of computers where our web antivirus was triggered, hit by advertising programs and their components.
In order to stay protected, Kaspersky Lab recommends the following:
- Pay close attention to, and don’t open any suspicious files or attachments received from unknown sources.
- Do not download and install applications from untrusted sources.
- Do not click on any links received from unknown sources and suspicious online advertisements.
- Create strong passwords and don’t forget to change them regularly.
- Always install updates. Big ransomware outbreaks, such as WannaCry and ExPetr have shown that delays in installation of patches can take months.
- Ignore messages asking to disable security systems for Office software or antivirus software.
- Use a proper security solution appropriate to your system type and devices.
Read more about annual threat statistics on Securelist.com.
Kaspersky Lab’s ‘Number of the year’ is part of the Kaspersky Security Bulletin 2017. To learn more about threat predictions for 2018, read our reports, which are available here, and watch our webinars on APT threat predictions and Industry & Technology predictions
Story of the year: Ransomware, and the review of the year are also available on Securelist.com.