In 2022, Kaspersky’s detection systems discovered on average 400,000 malicious files distributed every day, indicating a 5% growth compared to 2021.
The number of certain types of threats also escalated: for example, Kaspersky experts discovered a 181% increase in the proportion of ransomware detected daily. These and other findings are part of Kaspersky Security Bulletin (KSB), an annual series of predictions and analytical reports on key shifts within the cybersecurity world.
Kaspersky’s detection systems discovered an average of 400,000 new malicious files daily over the past 10 months. By comparison, about 380,000 of these files were detected every day in 2021, demonstrating a 5% jump. In total, Kaspersky’s systems detected approximately 122 million malicious files in 2022, 6 million more than last year.
Kaspersky’s researchers discovered that the share of ransomware encountered daily increased by 181% compared to 2021, reaching 9,500 encrypting files per day. Among other threats, Kaspersky security solutions also detected a 142% growth in the share of Downloaders — malicious programs that install new versions of malware or unwanted applications on infected devices.
Windows continued to be the prime target of attacks among all platforms where threat families were spread. In 2022, Kaspersky experts discovered an average of nearly 320,000 malicious files attacking Windows devices. Out of all malicious files spread, 85% of them targeted Windows. However, Windows is not the only popular platform for attackers. This year, Kaspersky’s detection systems also discovered that the share of malicious files in Microsoft Office formats distributed daily doubled (236% of growth).
In 2022, Kaspersky experts also identified a 10% increase in the share of malicious files targeting the Android platform every day. So, in addition to Windows and Office files, Android users have also become some of the favorite targets of fraudsters. The infamous 2022 campaigns Harly and Triada Trojan, which ambushed thousands of Android users around the world, are prime examples of this trend.
To stay protected, Kaspersky also recommends users the following:
- Do not download and install applications from untrusted sources
- Do not click on any links from unknown sources or suspicious online advertisements
- Create strong and unique passwords, including a mix of lower-case and upper-case letters, numbers, and punctuation, as well as activating two-factor authentication
- Always install updates. Some of them may contain critical security issue fixes
- Ignore messages asking to disable security systems for office or cybersecurity software
- Use a robust security solution appropriate to your system type and devices, such as Kaspersky Internet Security or Kaspersky Security Cloud. It will tell you which sites shouldn’t be open and protect you from malware
To stay safe, Kaspersky recommends organizations to:
- Always keep software updated on all the devices you use to prevent attackers from infiltrating your network by exploiting vulnerabilities.
- Establish the practice of using strong passwords to access corporate services. Use multi-factor authentication for access to remote services.
- Choose a proven endpoint security solution such as Kaspersky Endpoint Security for Business that is equipped with behavior-based detection and anomaly control capabilities for effective protection against known and unknown threats.
- Use a dedicated set for effective endpoint protection, threat detection, and response products to timely detect and remediate even new and evasive threats. Kaspersky Optimum Security is the essential set of endpoint protection empowered with EDR and MDR.
- Use the latest Threat Intelligence information to stay aware of actual TTPs used by threat actors.