The Kaspersky Security Bulletin (KSB) – a series of annual reports analysing major developments in the cybersecurity landscape – revealed that the company’s detection systems discovered an average of 467,000 malicious files per day in 2024, marking a 14 per cent increase compared to 2023. Certain types of threats saw significant growth, with experts reporting a 33 per cent surge in Trojan detections compared to 2023.
Windows continued to be the primary target for cyberattacks, accounting for 93 per cent of all malware-filled data detected daily. Malicious families disseminated through various scripts and different Microsoft Office document formats ranked among the top three threats, accounting for 6 per cent of all malicious files detected.
Kaspersky’s detection systems discovered a significant increase in Windows malware – 19 per cent from 2023 to 2024. The most widespread type of malware continues to be Trojans – malicious programs that disguise themselves as legitimate software – with a surge of 33 per cent from 2023 to 2024. There has also been a 2.5-fold (150 per cent) increase in the use of Trojan-droppers – programs designed to deliver other malware to a victim’s computer or phone without the victim noticing.
“The number of new threats grows every year as adversaries continue to develop new malware, techniques and methods to attack users and organisations”, said Vladimir Kuskov, Head of Anti-Malware Research at Kaspersky. “This year was no exception to this, and there were dangerous trends observed, such as attacks on trusted relationships and supply chains, including those on open-source packages (e.g., the XZ case).”
“There were massive phishing and malicious campaigns targeting social media users and a rise in banking malware. And, of course, the use of AI tools to generate new malware or facilitate phishing attacks. In this evolving cyber threat landscape, the use of reliable security solutions is vital. Kaspersky experts are always dedicated to countering new and challenging cyberthreats, ensuring a secure online experience for users as well as robust cybersecurity and the latest threat intelligence for organisations.”
Kaspersky’s Recommendations for Staying Protected
Individual users:
- Do not download and install applications from untrusted sources.
- Do not click on any links from unknown sources or suspicious online advertisements.
- Always use two-factor authentication when available. Create strong and unique passwords, using a mix of lower-case and upper-case letters, numbers, and punctuation. Use a reliable password manager to help to remember them.
- Always install updates when they become available; they contain fixes for critical security issues.
- Ignore messages asking to disable security systems for office or cybersecurity software.
- Use a robust security solution appropriate to your system type and devices.
Organisations:
- Always keep software updated on all the devices you use to prevent attackers from infiltrating your network by exploiting vulnerabilities.
- Do not expose remote desktop services (such as RDP) to public networks unless absolutely necessary and always use strong passwords for them.
- Use solutions such as Kaspersky NEXT EDR Expert for comprehensive visibility across all endpoints on a company’s corporate network to get superior defense, automate routine EDR tasks, enable analysts to speedily hunt out, prioritise, investigate, and neutralise complex threats and APT-like attacks.
- Use the latest Threat Intelligence information to stay aware of actual TTPs used by threat actors.
- Back up the corporate data regularly. Backups should be isolated from the network. Make sure you can quickly access the backups in an emergency if needed.