Malware is getting more difficult for security tools to detect as new strains gain more sophisticated evasion skills. According to a survey from WatchGuard Technologies, evasive malware detections have reached all-time highs.
According to the report, nearly four out of five (78 percent) of all malware sent over encrypted connections is elusive. Over encrypted connections, moreover, two-thirds (67 percent) of malware detections were made, and 78 percent of these were evasive zero-day threats capable of circumventing primary defenses.
A worrisome pattern is emerging, as the amount of evasive malware has been progressively increasing from quarter to quarter. According to WatchGuard Technologies, attacks like this can typically be blocked at the perimeter by using firewalls that decrypt and monitor incoming communications.
Unfortunately, the research goes on to say. Many businesses are failing to implement adequate safeguards.
Worryingly, the total number of identified network assaults is increasing. According to three-year research, the first quarter of 2022 had the greatest detections, with a 39 percent increase.
According to the researchers, one of the reasons is that many threat actors attempt to exploit known vulnerabilities. Another factor is the expansion of business networks, which results in more susceptible endpoints.
Advanced threats increased by one-third (33%), indicating a more significant number of zero-day threats than ever before.
Remote working is giving organizations a lot of headaches, according to Corey Nachreiner, CSO of WatchGuard, and the only way to address the security issue is to embrace a unified security approach.
“With the highest level of zero-day threats we’ve ever recorded and an attack surface that extends well beyond the network perimeter to IoT, home networks and mobile devices, companies need to adopt a true unified security approach that can adapt quickly and efficiently to the growing threat landscape,” he said.
“Organizations should make a commitment to implementing simple but critically important measures like updating and patching systems on a regular basis so they’re not enabling hackers.”