skip to main content
Close Icon We use cookies to improve your website experience.  To learn about our use of cookies and how you can manage your cookie settings, please see our Cookie Policy.  By continuing to use the website, you consent to our use of cookies.
Global Search Configuration

Ovum view

Summary

Symantec recently released the 23rd volume of its Internet Security Threat Report (ISTR), in which it highlights the diverse threat landscape facing organizations and the fact that threats are continuously looking for new ways to attack.

The report finds that coin-mining malware attacks have gone through the roof. Compromising an organization through its software supply chain is an increasingly popular attack vector, with targeted attacks up by 10%.

Few enterprises would have heard of cryptojacking at the beginning of 2017, evidence that the threat landscape is continually evolving and a point-in-time assessment is always going to be inadequate. Instead, organizations must be constantly aware of the evolving threat landscape to support the best possible security posture.

The threat landscape doesn’t stand still

Mining cryptocurrency can be big business, with organizations and individuals alike doing this to generate income, some legitimately and some not. The Symantec report notes that the consequence of the huge spike in cryptocurrency values toward the end of 2017 was an 8,500% rise in coin mining (attackers moved from ransomware to cryptojacking to make money). Yet many organizations remain unaware of cryptojacking and its impact.

In 2017 Symantec saw a 200% increase in incidents where attackers injected malware implants into the software supply chain to infiltrate organizations. Despite keeping its own house in order in terms of security, an organization can still be compromised via the software in use throughout its supply chain.

Cyber espionage, financial gain, and enterprise disruption are noted by Symantec as the top three motives for the 10% increase in targeted attacks in 2017. It’s evident that threats are still using well-known methods of attack as well as looking for new vectors, with 71% of all targeted attacks originating with spear phishing.

This report should serve as a wake-up call to many organizations. There is a great deal of misplaced optimism among enterprises that they are better prepared than their counterparts when it comes to knowing what attacks might happen, preventing an attack, detecting an attack, and dealing with an attack. This Symantec report puts paid to this optimism, and across all sectors, enterprises must improve their security controls to deal with the continuously evolving threat landscape.

Appendix

Further reading

Symantec’s Internet Security Threat Report should serve as a wake-up call, INT003-000132 (April 2018)

Author

Maxine Holt, Research Director, Infrastructure Solutions

maxine.holt@ovum.com

Recommended Articles

  • Service Provider Markets, Consumer & Entertainment Services,...

    MWC 2018 Highlights

    By Ronan De Renesse 27 Feb 2018

    Over 20 of our senior Ovum analysts and consultants attended this year’s Mobile World Congress in Barcelona at the end of February. In between meetings, briefings and presentations, our analyst team were blogging and tweeting about key developments, trends and rumors. Have a look through our daily MWC 2018 Highlights to find out what happened.

    Topics 5G AI IoT Cloud Payments SDN/NFV Smart home

  • Enterprise Decision Maker, Enterprise IT Strategy and Select...

    2017 Trends to Watch: Big Data

    By Tony Baer 21 Nov 2016

    The breakout use case for big data will be fast data. The Internet of Things (IoT) is increasing the urgency for enterprises to embrace real-time streaming analytics, as use cases from mobile devices and sensors become compelling to a wide range of industry sectors.

    Topics Big data and analytics IoT

  • Consumer & Entertainment Services

    US pay TV: Is it facing an existential threat?

    By Adam Thomas 28 Mar 2018

    With US pay TV having endured the worst year in its history, thoughts have inevitably turned to the future. The likelihood remains that the immediate future will remain highly uncomfortable for everyone except the scaled multinational digital platforms.

;

Have any questions? Speak to a Specialist

Europe, Middle East & Africa team - +44 (0) 207 017 7700


Asia-Pacific team - +61 (0)3 960 16700

US team - +1 646 957 8878

+44 (0) 207 551 9047 - Operational from 09.00 - 17.00 UK time

You can also contact your named/allocated Client Services Executive using their direct dial.
PR enquiries - Call us at +44 788 597 5160 or email us at pr@ovum.com

Contact marketing - 
marketingdepartment@ovum.com

Already an Ovum client? Login to the Knowledge Center now