Endpoint malware detection rises by 75%

Cybersecurity continues to be unfinished business for many companies. In a context where digitalization reigns in almost all areas, cybercriminals have more and more resources to draw on and continue to threaten the cybersecurity of millions of organizations.

To guide companies and industry professionals through the ever-changing habits of malware, WatchGuard has released a new edition of our Internet Security Report (ISR). In this new report, our experts set out the top malware trends that have dominated the first three months of 2024. 

Key findings of the ISR 

Malware is constantly changing, and companies need to be aware of this evolution so that they can implement the right measures to combat these threats. We highlight below some of the most relevant malware behaviors during Q1 of this year: 

1. Significant drop in network-based attacks: 

The total amount of malware detected on the network has decreased by 49%, almost by half. This contrasts sharply with the previous quarter, where this type of attack increased by 80%. Overall, malware detections in APT Blocker and IntelligentAV services have dropped considerably. However, the amount of malware detected via encrypted connections has increased.

2. Fewer zero-day attacks: 

During the first quarter of the year, zero-day attacks accounted for 36% of malware. This is a far cry from the historical figure of 50%. That said, this fall in activity does not mean that this malware no longer poses a threat. It is still advisable to implement protection services like an EPDR solution against more proactive malware.

3. Malware on endpoints increases considerably: 

In contrast to points 1 and 2, malware detection on endpoints has increased by more than 75% during the first months of 2024. 

4. New malware enters the top 10: 

Pandoraspear, a malware targeting open-source Android smart TVs, has been ranked as one of the top 10 most-detected malicious programs. This highlights the risk that vulnerabilities in IoT devices pose to corporate security.

5. Ransomware continues to decline: 

Ransomware attacks have decreased by around 23%. The drop is probably due to the numerous efforts by authorities to dismantle this type of threat. 

New malware paradigm. How can we protect ourselves? 

When developing an effective protection strategy, it is important to understand the behavior and habits of the threats we want to combat. Our Internet Security Report enables companies to set cybersecurity priorities aligned with the latest cybercriminal behavior patterns. Based on the trends from the first quarter of the year, organizations should prioritize keeping software up to date as well as fostering good security habits among employees if they want to combat these threats effectively. In addition, implementing a robust security system based on layered protection to prevent cybersecurity breaches can elevate companies' protection in an ever-changing environment. Deploying a unified platform can further strengthen an organization’s protection against cyberattacks. 

To learn more about the malware trends detected in our ISR, please read the full report: Internet Security Report – Q1 2024.