The latest Global Threat Index, published by Check Point Research, has highlighted the concerning situation of cybersecurity worldwide, revealing that the malware FakeUpdates has regained its position as the top threat, affecting 7.4% of companies in Spain and 5% globally. This information emphasizes the increasing complexity and sophistication that cybercriminals are implementing in their operations, making the cybercrime landscape a more complicated and challenging environment.
FakeUpdates, also known as SocGholish, is a downloader that has proven to be particularly versatile by allowing the subsequent introduction of malicious payloads. Its ability to infiltrate different systems makes it a significant risk as it facilitates the spread of other malicious programs, including GootLoader and Dridex.
Additionally, the report highlights the emergence of a new competitor in the ransomware environment: FunkSec. This group has been using double extortion tactics and leveraging artificial intelligence in their attacks, being responsible for the publication of over 85 victims in December 2024 alone, surpassing the figures reported by other more established groups. However, Check Point Research has expressed doubts about the validity of the figures communicated by FunkSec, suggesting that some claims may be based on unconfirmed data.
The proliferation of digital threats has led cybersecurity experts, such as Maya Horowitz, VP of Research at Check Point Software, to emphasize the need for constant vigilance and fostering innovation in the sector. Horowitz warned that companies must adopt advanced measures to protect themselves against the ongoing evolution of criminal techniques.
Regarding the malware families wreaking havoc in Spain, in addition to FakeUpdates, Androxgh0st and Remcos are affecting 3.2% and 2.5% of companies, respectively. Androxgh0st is a botnet targeting multiple systems, while Remcos operates as a Trojan distributed through malicious Microsoft Office documents.
The situation is further complicated by the increasing threat of mobile malware, with Anubis being the top banking Trojan in the last month. This malware has evolved to include remote access and information theft capabilities. In terms of sectors most exposed, governments and the military are the primary targets of these attacks, followed by media and public services.
With the proliferation of groups like FunkSec and the growing sophistication of techniques used by other ransomware, cybersecurity is established as an unavoidable priority for companies and organizations worldwide, given the uncertainty and challenges posed by these increasingly advanced threats.
Source: MiMub in Spanish
