Η Intel Security released today report: McAfee Labs Threats Report: May 2015. According to the new McAfee Labs report, attacks with CTB Locker ransomware increased 165% in the first three months of 2015.
More than one-third (35 percent) of victims were in Europe, according to the McAfee Labs report. The CTB Locker is known to encrypt the records of its victims, and keeps locked up until ransom is paid to the attackers.
The latest version of Intel Security's report, which as we mentioned was published today Tuesday, reports for the first time firmware attacks from an undetectable hybrid malware. More specifically, the report details "persistent and virtually undetectable attacks" by the so-called Equation Group that reprograms the firmware of hard drives and SSDs.
McAfee Labs evaluated the reprogramming modules found in February and found that they could be used to reprogram the SSDs firmware in addition to the aforementioned HDD firmware reprogramming feature.
Once rescheduled, the SSD firmware reloads malware with each boot of the system being infected, and the malicious software remains even if the drives are deleted with Format and the operating system is reinstalled.
After the infection, the softwares security they cannot detect the associated malware that is stored in a hidden area of the drive.
Intel Security reports that, Equation Group has been linked to select NSA units, through confirmation by former executives.
Finally, the security report reports a surge in Adobe Flash infections as new exploits increasingly target unpatched vulnerabilities points. New Adobe Flash malware samples detected in Q1 2015 reached 200.000 (almost), a 317% increase from the 47.000 samples detected in Q2014 XNUMX.
You can also view the 45 pages of the McAfee Labs report from the link below