These are the nastiest cyber threats this Halloween

Skull and Bones
(Image credit: Pixabay)

To avoid falling victim to a malware infection, users first need to be aware of which malware strains are actively being used by cybercriminals in their attacks which is why Webroot releases a list of the nastiest malware each year.

In its third annual nastiest malware list, the cybersecurity firm examined this year's biggest cyber threats and ranked them based on their severity. 

According to Webroot, phishing and remote desktop protocol-related breaches remain the top methods its has observed cybercriminals using to launch their attacks. However, new malware strains and tactics are being deployed each day while others have received upgrades that made them more powerful.

This year the main trend the firm observed is modularity as cybercriminals have adopted a more modular malware methodology in which they combine attack methods and mix-and-match tactics to ensure their attacks reach their intended targets.

Nastiest malware of 2020

Emotet has once again taken the top spot on Webroot's list of the nastiest malware for the third year in a row. The malware is deployed by cybercriminals in a botnet that is used to spread ransomware and it often appears alongside TrickBot, Dridex, QakBot, Ryuk, BitPaymer and REvil.

Next up on the list is the Gozi trojan, IcedID trojan and Maze ransomware which are often deployed together. In a potential attack scenario, Gozi could end up on a machine through a malicious email, botnet or even TrickBot and then drop the IcedID trojan to help improve an attacker's chances of obtaining the credentials or information they want.

Just like TrickBot, Dridex is another popular banking/info-stealing Trojan that made Webroots's list this year. It has been around for years and is dropped via Emotet or through malicious spam campaigns. Also in a similar manner to TrickBot, Dridex spreads laterally and typically deploys ransomware such as BitPaymer/DoppelPaymer.

While these malware strains were the nastiest this year, they aren't the only ones to make the list. Other notable contenders for the nastiest malware of 2020 including the REvil and Dharma ransomware, the multi-functional malware distribution tool Valak and the info-stealing trojan QakBot.

To prevent falling victim to malware, Webroot recommends organizations lock down RDP, educate their employees about phishing, install a reputable security suite, develop a disaster recovery plan and backup up their important data.

TOPICS
Anthony Spadafora

After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home. 

Latest in Security
Isometric demonstrating multi-factor authentication using a mobile device.
NCSC gets influencers to sing the praises of 2FA
Sam Altman and OpenAI
OpenAI is upping its bug bounty rewards as security worries rise
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Dangerous new CoffeeLoader malware executes on your GPU to get past security tools
China
Notorious Chinese hackers FamousSparrow allegedly target US financial firms
A digital representation of a lock
NYU website defaced as hacker leaks info on a million students
NHS
NHS IT supplier hit with major fine following ransomware attack
Latest in News
Nintendo Switch 2 Joy-Con up-close from app store
Nintendo's new app gave us another look at the Switch 2, and there's something different with the Joy-Con
cheap Nintendo Switch game deals sales
Nintendo didn't anticipate that Mario Kart 8 Deluxe was 'going to be the juggernaut' for the Nintendo Switch when it was ported to the console, according to former employees
Three angles of the Apple MacBook Air 15-inch M4 laptop above a desk
Apple MacBook Air 15-inch (M4) review roundup – should you buy Apple's new lightweight laptop?
Witchbrook
Witchbrook, the life-sim I've been waiting years for, finally has a release window and it's sooner than you think
Amazon Echo Smart Speaker
Amazon is experimenting with renaming Echo speakers to Alexa speakers, and it's about time
Shigeru Miyamoto presents Nintendo Today app
Nintendo Today smartphone app is out now on iOS and Android devices – and here's what it does