The cyber surge: Kaspersky detected 467,000 malicious files daily in 2024

Windows continued to be the primary target for cyberattacks, accounting for 93% of all malware-filled data detected daily. Malicious families disseminated through various scripts and different MS Office document formats ranked among the top three threats, accounting for 6% of all malicious files detected daily.

Average daily number of malicious files detected by Kaspersky security solutions from 2021 to 2024 (1^st January – 31^st October)

Kaspersky’s detection systems discovered a significant increase in Windows malware – 19% from 2023 to 2024. The most widespread type of malware continues to be Trojans – malicious programs that disguise themselves as legitimate software – with a surge of 33% from 2023 to 2024. There has also been a 2.5-fold (150%) increase in the use of Trojan-droppers – programs designed to deliver other malware to a victim’s computer or phone without the victim noticing.

"The number of new threats grows every year as adversaries continue to develop new malware, techniques and methods to attack users and organizations. This year was no exception to this, and there were dangerous trends observed, such as attacks on trusted relationships and supply chains, including those on open-source packages (e.g., the XZ case). There were massive phishing and malicious campaigns targeting social media users and a rise in banking malware. And, of course, the use of AI tools to generate new malware or facilitate phishing attacks. In this evolving cyber threat landscape, the use of reliable security solutions is vital. Kaspersky experts are always dedicated to countering new and challenging cyberthreats, ensuring a secure online experience for users as well as robust cybersecurity and the latest threat intelligence for organizations," comments Vladimir Kuskov, Head of Anti-Malware Research at Kaspersky.

These discoveries are ba­sed on Kaspersky detections of malicious files from January to October and are part of Kaspersky Security Bulletin (KSB) – an annual series of predictions and analytical reports on key shifts within the cybersecurity world. Follow this link to learn more about cyberthreat statistics for 2024.

To stay protected, follow the recommendations below.

Individual users:

• Do not download and install applications from untrusted sources
• Do not click on any links from unknown sources or suspicious online advertisements
• Always use two-factor authentication when available. Create strong and unique passwords, using a mix of lower-case and upper-case letters, numbers, and punctuation. Use a reliable password manager to help to remember them
• Always install updates when they become available; they contain fixes for critical security issues
• Ignore messages asking to disable security systems for office or cybersecurity software
• Use a robust security solution appropriate to your system type and devices, such as Kaspersky Premium

Organizations:

• Always keep software updated on all the devices you use to prevent attackers from infiltrating your network by exploiting vulnerabilities
• Do not expose remote desktop services (such as RDP) to public networks unless absolutely necessary and always use strong passwords for them
• Use solutions such as Kaspersky NEXT EDR Expert for comprehensive visibility across all endpoints on a company’s corporate network to get superior defense, automate routine EDR tasks, enable analysts to speedily hunt out, prioritize, investigate, and neutralize complex threats and APT-like attacks
• Use the latest Threat Intelligence information to stay aware of actual TTPs used by threat actors
• Back up the corporate data regularly. Backups should be isolated from the network. Make sure you can quickly access the backups in an emergency if needed