iscover
ReporterShare this article on:
Powered by
MOMENTUM
MEDIA
Research unveiled by global cyber security provider Palo Alto Networks has shone a spotlight on some worrying new cyber security trends, revealing that 66 per cent of malware was delivered through PDF, while analysts have observed substantial increases in scams related to ChatGPT.
The trends were detailed in the second volume of Palo Alto Networks’ Unit 42 Network Threat Trends Research Report, compiling findings from Cortex Data Lake, Advanced URL Filtering, Advanced WildFire and Palo Alto Networks’ Next-Generation Firewall.
The report outlined a range concerning findings including that PDFs are the “most popular” mechanism to deliver malware — with malicious PDFs comprising 66 per cent of email malware deliveries.
Unit 42 also detailed how threat actors are leveraging excitement around ChatGPT, including attempts to mimic the artificial intelligence platform.
According to Unit 42, analysts observed a 910 per cent increase in the registration of domains that mimic ChatGPT between November 2022 and April 2023.
“Threat actors are constantly evolving their techniques, adopting multivector attacks that aim to bypass detection by employing various evasion tools and camouflage methods,” Steve Manley, regional vice-president of ANZ at Palo Alto Networks, said.
“They have become adept at exploiting vulnerabilities, and by the time security researchers and software vendors close the door on one vulnerability, cyber criminals have already found the next door to creak open. Organisations must, therefore, simultaneously guard against malware designed to exploit older vulnerabilities while proactively staying ahead of sophisticated new attacks.”
The report also warned that scammers have utilised “newly registered domains” to target victims, particularly those visiting adult websites and financial services.
A Palo Alto blog explained the danger posed by newly registered domains.
“The actors behind malicious NRDs often create slight variations of legitimate brand domains, hoping to fool users into visiting them,” the blog read.
“Many of these domains stay active only for short periods, which makes them hard to detect.”
Sean Duca, vice-president and regional chief security officer at Palo Alto Networks, detailed the evolving risk environment and how businesses must protect themselves.
“As millions of people use ChatGPT, it’s unsurprising that we see ChatGPT-related scams, which have exploded over the past year, as cyber criminals take advantage of the hype around AI. But the trusty email PDF is still the most common way cyber criminals deliver malware,” Duca said.
“Cyber criminals, no doubt, are looking at how they can leverage it for their nefarious activities, but for now, simple social engineering will do just fine at tricking potential victims.
“Organisations must, therefore, take a holistic view of their security environment to provide comprehensive oversight of their network and ensure security best practices are followed at every level of the organisation.”
Other findings have included alarming increases in the number of malware attacks against operational technology providers.
According to the findings, the number of attacks against manufacturing, utilities and energy industry providers increased by 238 per cent between 2021 and 2022.
Be the first to hear the latest developments in the cyber industry.
