Threats on the Web are constantly evolving, and for that matter, the cybersecurity researcher Keegan Keplinger carried out an analysis on the current trends of cybercrimine.
The expert wanted to underline how the greatest danger, at present, consists of links to fake websites. We’re talking about millions and millions link used as a first step in infections ransomware or by other types of malware. For Keplinger, what should further worry ordinary users and others is the fact that the training security is struggling to keep up with emerging threats.
The researcher, a veteran member of the threat response unit of eFeelhighlighted how, since 2020, huge changes have occurred in the modus operandi of cybercriminals and how it is very difficult to keep up with their pace.
Fake websites and dangerous links are increasingly used by cybercriminals
For Keplinger, the classics email attachments they are now a secondary carrier.
The links, in fact, are more difficult to identify in advance and allow the potential victim to be moved from a “controlled” place to a dangerous website. If in 2020 the initial vector for infecting devices was emails in the 66% of cases, for the expert this percentage dropped to 28%.
Contributing to the decline in these cases was, without a shadow of a doubt, the greater attention of users compared to the safety of your email. Additionally, providers have increased their efforts to deliver anti-spam filters even more effective.
This series, among other things, includes the most recent cases of malvertising. The hackers of 2023/2024, in fact, also publish ads Google created to attract employees of large companies and public bodies, potentially more profitable targets. In fact, today the favorite victims of hackers are medium-large companies, whose stolen data is then exploited for ransomware attacks or sold on the Internet. Dark Web.
If the focus of cybercriminals has shifted from email to via attacks browser, Keplinger himself confirms that there are still potential effective moves. First of all, just be very careful when dealing with a link. Just hover over it to see which one URL the same directs the user. Even the slightest change in font, compared to an official website, can reveal the malicious nature of the link.
Furthermore, in the corporate environment, it is important to train your employees, given that they are “coveted prey” for cyber criminals.