Q1 in figures
- According to KSN data, Kaspersky Lab products detected and neutralized a total of 2,205,858,791 malicious attacks on computers and mobile devices in the first quarter of 2015.
- Kaspersky Lab solutions repelled 469,220,213 attacks launched from online resources located all over the world.
- Kaspersky Lab’s web antivirus detected 28,483,783 unique malicious objects: scripts, exploits, executable files, etc.
- 93,473,068 unique URLs were recognized as malicious by web antivirus components.
- 40% of web attacks neutralized by Kaspersky Lab products were carried out using malicious web resources located in Russia.
- Kaspersky Lab’s antivirus solutions detected a total of 253,560,227 unique malicious and potentially unwanted objects.
- Kaspersky Lab mobile security products detected
- 147,835 installation packages;
- 103,072 new malicious mobile programs;
- 1,527 mobile banking Trojans.
Equation APT – the most sophisticated attacks
The story of the powerful Equation cyberespionage group was perhaps the most talked-about news story of Q1. The group has interacted with other influential groups, such as Stuxnet and Flame, for many years. Attacks carried out by Equation are arguably the most sophisticated of all: one of the group’s modules can be used to modify hard drive firmware. Since 2001, Equation has successfully infected the computers of thousands of victims in Iran, Russia, Syria, Afghanistan, the US and other countries. Its victims come from sectors such as government and diplomatic institutions, telecommunications, energy, etc.
The group uses a variety of malware, some of which is even more sophisticated than the infamous Regin platform. Known methods of dissemination and infection include using the Fanny USB worm (its arsenal included two zero-day vulnerabilities that were later used in Stuxnet), malicious installers on CDROMs, and web exploits.