• Crescita record (10,52 miliardi) di attacchi malware nel 2018
  • Identificate 391.689 nuove varianti
  • Crescita degli attacchi IoT, con un aumento del 217% rispetto al 2017
  • Il 19,2% degli attacchi di malware ha sfruttato porte non standard

MILPITAS, California, 26 marzo 2019.  In data odierna SonicWall ha reso nota la pubblicazione del SonicWall Cyber Threat Report sulle cyber minacce 2019, che contiene un’analisi approfondita  delle minacce ottenuta attraverso i sensori dell’azienda (più di un milione) installati in ogni parte del mondo. I dati sulle minacce raccolti nel 2018 ed analizzati dal gruppo di élite di ricercatori dei SonicWall Capture Labs indicano un forte aumento del volume di cyber attacchi e nuove tattiche di minaccia mirate utilizzate dai  cybercriminali.

“Non conosce soste l’attività di ricerca dei cybercriminali mirata all’acquisizione illegale di dati, informazioni preziose e proprietà intellettuale – ha dichiarato Bill Conner, Presidente e CEO di SonicWall, che ha aggiunto – e non dobbiamo cedere un centimetro in questa corsa ai cyber armamenti. Condividere informazioni essenziali sulle minacce con i nostri clienti ed i nostri partner li pone in una posizione di vantaggio tattico. Ma è altrettanto importante mettere l’intelligence a disposizione di chi si trova in prima fila in questa battaglia, promuovere la conoscenza globale del panorama delle minacce e continuare a perseguire l’importante dialogo su quelle che sono le cyber minacce attualmente più diffuse”.

A seguito di vulnerabilità come Spoiler, PortSmash, Foreshadow, Meltdown e Spectre, che possono dar luogo ad attacchi a canale laterale, i ricercatori SonicWall sono convinti che le vulnerabilità dei processori costituiscano una preoccupazione sempre maggiore per la sicurezza per quanto riguarda le tecnologie software e hardware, che potrebbero avere ramificazioni mai viste fino ad ora. La tecnologia (in attesa di brevetto) SonicWall Real-Time Deep Memory Inspection™ (RTDMI) ha identificato nel 2019 74.290 attacchi fino ad oggi sconosciuti. Si tratta di varianti così nuove, uniche e complesse che erano prive di signature al momento della scoperta e contenevano più attacchi a canale laterale.

Man mano che le difese di rete diventano sempre più sofisticate, anche gli attacchi diventano sempre più anonimi, prendendo di mira le porte non standard per far sì che il payload non venga riconosciuto quando viene consegnato. Sulla base di un campionamento di oltre 700 milioni di attacchi malware, la ricerca SonicWall ha riscontrato che il 19,2% di tutti gli attacchi di malware ha utilizzato porte non standard, con un aumento dell’8,7% rispetto all’anno precedente.

“La preoccupazione per la sicurezza e la privacy è più forte di prima. Le industrie e i governi devono collaborare per costruire un ambiente più sicuro, mitigare il rischio e far sì che il cittadino abbia fiducia nel governo e il consumatore nelle aziende – ha dichiarato Michael Chertoff, Presidente Esecutivo e cofondatore di The Chertoff Group, ed ex-segretario della U.S. Homeland Security, che ha aggiunto – Questo rapporto contiene un’analisi critica dell’evoluzione delle tattiche e dei metodi di minaccia dei cyberavversari. Dato che le organizzazioni si affidano sempre di più alle metriche per capire e prevedere il rischio, questa intelligence aiuterà imprese e governi a prendere decisioni informate per quanto riguarda gli investimenti per la sicurezza”.

I PDF e i file di Office sono da tempo gli strumenti di lavoro per le organizzazioni di qualsiasi dimensione e in tutti i settori industriali. I cybercriminali stanno sfruttando questi file ritenuti affidabili per aggirare i firewall tradizionali e le sandbox single-engine per consegnare i malware. Nel 2018 il servizio sandbox multi-engine di SonicWall ha scoperto minacce in più di 47.000 PDF e circa 51.000 file Office. Ciò pone un problema sempre più vasto, dato che la maggior parte dei controlli di sicurezza non è in grado di identificare e mitigare il malware nascosto contenuto nei file.

Il rapporto annuale è il risultato delle analisi condotte giornalmente dai ricercatori di SonicWall Capture Labs sui dati delle minacce relativi ad oltre 200.000 eventi dannosi e campioni di malware per confrontare e documentare l’attività criminale online.

  • Nel 2018 sono stati bloccati 10,52 miliardi di attacchi di malware, il numero più elevato registrato fino ad oggi da SonicWall
  • Incremento del 217,5% degli attacchi ai danni dell’Internet delle cose nel 2018
  • Più di 2,8 milioni sono stati gli attacchi encrypted malware bloccati nel 2018, con un incremento annuo del 27% rispetto al 2017
  • Aumento dell’11% degli attacchi di ransomware rispetto all’anno precedente
  • Aumento del 56% degli attacchi web app
  • 3,9 trilioni di tentativi d’intrusione

Il rapporto completo è scaricabile dal sito www.sonicwall.com/ThreatReport. I dati correnti sui cyber attacchi sono disponibili sul sito SonicWall Security Center, assieme a quelli relativi alle ultime tendenze, ai tipi e ai volumi degli attacchi nel mondo.

SonicWall

SonicWall è attiva nel settore della lotta al cybercrimine da più di 27 anni a difesa delle PMI, delle imprese e degli enti pubblici in ogni parte del mondo. Grazie alla ricerca dei SonicWall Capture Lab, le nostre premiate soluzioni di rilevamento e prevenzione delle violazioni in tempo reale proteggono più di un milione di reti aziendali, rispettive email, applicazioni e dati, in oltre 215 paesi, consentendo alle organizzazioni di funzionare in modo più efficace e con meno timori per la sicurezza. Per ulteriori informazioni visitare www.sonicwall.com o seguirci su Twitter, LinkedIn, Facebook e Instagram.

 

Latest Stories

" alt="" />
December 9, 2024

SonicWall and CrowdStrike Partner to Protect SMBs with All-New Managed Detection and Response (MDR) Offering

Strategic partnership combines SonicWall’s managed services expertise with CrowdStrike’s industry-leading endpoint protection, empowering MSPs with scalable and accessible AI-powered solutions for SMBs MILPITAS, Calif. — December 9, 2024 — SonicWall and CrowdStrike today announced the launch of a new Managed Detection and Response (MDR) offering, bringing enterprise-grade security to small and medium-sized businesses (SMBs). This collaboration combines SonicWall’s trusted Managed Security Services (MSS) with the Endpoint Detection and Response (EDR) capabilities from the CrowdStrike Falcon® cybersecurity platform, providing a powerful and scalable AI-native security solution designed for Managed Service Providers (MSPs) serving SMBs. SMBs are increasingly targeted by sophisticated cyber threats, making effective security solutions more critical than ever. By combining CrowdStrike’s AI-powered endpoint protection, detection and response with SonicWall’s 24/7 Security Operations Center (SOC), this new MDR offering equips MSPs with the resources to safeguard SMBs. With its scalable, enterprise-grade approach, the solution empowers MSPs to address complex cybersecurity challenges while fostering customer trust in a rapidly evolving threat landscape. “We’re thrilled to partner with CrowdStrike to deliver SMBs the best of both worlds: industry-leading AI-native endpoint security and the trusted, expert-managed services that SonicWall is known for,” said SonicWall CEO and President Bob VanKirk. “This collaboration underscores SonicWall’s commitment to empowering MSPs with the right blend of advanced security tools, expert support, and streamlined processes, enabling them to protect their SMB customers effectively and efficiently in today’s evolving threat landscape.” “SonicWall’s large SMB presence and their long-standing commitment to supporting MSPs make this partnership a natural fit,” said Daniel Bernard, CrowdStrike chief business officer. “Together, we are providing MSPs with the solutions to deliver scalable, effective AI-powered cybersecurity that is easy to deploy and tailored to the unique needs of SMBs. This partnership underscores CrowdStrike’s mission to stop breaches and secure organizations of all sizes.” To learn more about this strategic partnership, please visit https://www.sonicwall.com/resources/brief/the-right-people-process-and-technology-defending-smbs-with-sonicwall-mdr-and-crowdstrike. About SonicWall SonicWall is a cybersecurity forerunner with more than 30 years of expertise and is recognized as a leading partner-first company. With the ability to build, scale and manage security across the cloud, hybrid and traditional environments in real-time, SonicWall provides seamless protection against the most evasive cyberattacks across endless exposure points for increasingly remote, mobile and cloud-enabled users. With its own threat research center, SonicWall can quickly and economically provide purpose-built security solutions to enable any organization—enterprise, government agencies and SMBs—around the world. For more information, visit www.sonicwall.com or follow us on Twitter, LinkedIn, Facebook and Instagram. Media Contact Bret Fitzgerald Sr. Director, Global PR bfitzgerald@sonicwall.com   About CrowdStrike CrowdStrike (NASDAQ: CRWD), a global cybersecurity leader, has redefined modern security with the world’s most advanced cloud-native platform for protecting critical areas of enterprise risk – endpoints and cloud workloads, identity and data. Powered by the CrowdStrike Security Cloud and world-class AI, the CrowdStrike Falcon® platform leverages real-time indicators of attack, threat intelligence, evolving adversary tradecraft and enriched telemetry from across the enterprise to deliver hyper-accurate detections, automated protection and remediation, elite threat hunting and prioritized observability of vulnerabilities. Purpose-built in the cloud with a single lightweight-agent architecture, the Falcon platform delivers rapid and scalable deployment, superior protection and performance, reduced complexity and immediate time-to-value. CrowdStrike: We stop breaches. Learn more: https://www.crowdstrike.com/ Follow us: Blog | Twitter | LinkedIn | Facebook | Instagram Start a free trial today: https://www.crowdstrike.com/free-trial-guide/ © 2024 CrowdStrike, Inc. All rights reserved. CrowdStrike and CrowdStrike Falcon are marks owned by CrowdStrike, Inc. and are registered in the United States and other countries. CrowdStrike owns other trademarks and service marks and may use the brands of third parties to identify their products and services. Media Contact Jake Schuster CrowdStrike Corporate Communications press@crowdstrike.com

Read More
" alt="" />
November 6, 2024

SonicWall Unveils TZ80: Empowering Service Providers to Deliver Comprehensive Security, Remote Access and Networking Solutions for Branch Offices and SOHO

More Than a Firewall: SonicWall Introduces Integrated Cybersecurity Platform with the TZ80 at the Core of the Market’s Next-Gen SOHO Solution, Featuring: Industry-First Warranties, Cloud Native VPN, Firewall Management and Flexible Pricing MILPITAS, Calif. — November 7, 2024 — SonicWall announced today the launch of the TZ80, a groundbreaking security solution designed specifically for branch offices and small office/home office (SOHO) environments. With its comprehensive, cost-effective package of networking, access, and security solutions, the TZ80 is a subscription-based device designed for service providers and value-added resellers (VARs) – and is set to revolutionize the way they deliver cybersecurity. The SonicWall TZ80 combines performance and price and provides industry leading networking and security capabilities, with advanced threat protection at a low total cost of ownership (TCO), making the TZ80 ideal for branch offices with remote workers, SOHO, IoT, and businesses with small form-factor requirements. This best-in-class firewall platform features built-in integration with cloud-native zero trust network access (ZTNA) and VPN as a service (VPNaaS) for hybrid environments and is backed by world-class technical support, available firewall management and network monitoring, and an industry-first cyber threat warranty. “The TZ80 is more than a firewall; it embodies the future of cybersecurity for managed service providers and their customers,” said SonicWall President and CEO Bob VanKirk. “With this launch, we’re transforming network security by integrating on-premise, hybrid, and cloud technologies into a cohesive solution. Our unified approach enhances security and performance while protecting customer data with modern cloud management and backed by expert services to keep our partners secure in today’s evolving threat landscape.” MSPs can complement their existing firewall monitoring and network operations center (NOC) to enhance their services with SonicWall’s managed security services, who work behind the scenes as a force multiplier for SonicWall partners. The Managed Protection Services Suite (MPSS) bundle provides management for TZ80 devices, with remote implementation, firmware and vulnerability management, and system health monitoring to help MSPs ensure that their customers employ best practices and stay up-to-date for the highest level of protection in today’s threat landscape. “We’ve been looking for a solution like the TZ80, and it’s exciting to see SonicWall deliver precisely what we need,” said President/CEO and SonicWall partner Brian A. Reed of Firewalls.com. “This opens up significant opportunities in the SOHO market for us, and the bundled cloud native VPN adds tremendous value, while the pay-as-you-go model makes it even more accessible. Additionally, the MPSS bundle enhances our offering and helps us stay focused on the core of our business, ensuring our clients stay secure.” To further enhance the value proposition, SonicWall will offer industry-first cybersecurity warranties for the TZ80 and other SonicWall front-line defense products certified by Cysurance. These warranties will help supplement insurance coverage by providing cash for covering deductibles or other out of pocket expenses before insurance kicks in. SonicWall will offer warranties for the TZ80 and other certified products as follows: $100K for a qualifying firewall $200K for a qualifying managed firewall Additionally, SonicWall is excited to introduce its latest and new "3 & Free" promotion. This promotion includes cloud native VPN licenses along with a free next-gen firewall. When purchasing a 3-year Advanced Protection Services Suite (APSS) or Essential Protection Services Suite (EPSS) customers get more than just free firewalls - they also gain comprehensive protection from latest cyber threats. SonicWall remains dedicated to equipping its partners with the tools they need to deliver security outcomes in a rapidly evolving cybersecurity landscape. The TZ80 represents a significant leap forward in delivering scalable, and integrated security solutions via our MSPs for branch offices and SOHO environments. To learn more about SonicWall’s TZ80, the full offering, new warranties and promotions please visit https://www.sonicwall.com/products/firewalls/soho. About SonicWall SonicWall is a cybersecurity forerunner with more than 30 years of expertise and is recognized as a leading partner-first company. With the ability to build, scale and manage security across the cloud, hybrid and traditional environments in real-time, SonicWall provides seamless protection against the most evasive cyberattacks across endless exposure points for increasingly remote, mobile and cloud-enabled users. With its own threat research center, SonicWall can quickly and economically provide purpose-built security solutions to enable any organization—enterprise, government agencies and SMBs—around the world. For more information, visit www.sonicwall.com or follow us on Twitter, LinkedIn, Facebook and Instagram.

Read More
" alt="" />

Infinigate and SonicWall Expand Partnership Across Eastern Europe

SonicWall and Infinigate extend their successful collaboration to cover the Eastern European region, including Balkan countries.   Rotkreuz, Switzerland – November 6, 2024: The Infinigate Group, the leading technology platform and trusted advisor in cybersecurity, cloud and network infrastructure, and SonicWall, a leading cybersecurity innovator and partner-first company, are extending their partnership across Eastern Europe. Infinigate will distribute SonicWall’s entire advanced portfolio of network and endpoint security, Cloud Secure Edge (CSE) and Managed Security Services (MSS) offering channel partners effective solutions to meet the ever-evolving requirements of a broad customer base – from SMB through to enterprise organisations. Spencer Starkey, Executive Vice President at SonicWall said: “The Eastern European market presents a strong opportunity for growth and Infinigate, in view of our long-standing successful collaboration and their reach and experience in this geographical area, is absolutely the right distribution partner for us. Being a channel-first organisation, we value Infinigate’s specialist focus and their technical and market knowledge.” Protecting your business from escalating cyber-attacks has become a priority, as illustrated in Sonic Wall’s 2024 Mid-Year Cyber-Threat Report. Ransomware is on the rise in the Americas, while EMEA is pulling the global numbers down, suggesting improved cybersecurity measures and law enforcement interventions are having a positive impact. “We are delighted to build on our long-standing success with SonicWall and leverage the full potential of this growing region, where cybersecurity is high on the agenda, as illustrated by the NIS2 readiness statistics,” said Denis Ferrand Ajchenbaum, Chief Growth Officer at Infinigate Group and Managing Director of Infinigate Cloud. “As a leading Managed Security Services Distributor, we value SonicWall’s range of managed security services that considerably strengthen our offering in the region,” he added. Doru Manea, RVP East at Infinigate commented: Doru Manea, RVP East at Infinigate, commented: “Bringing SonicWall into our regional portfolio strengthens our ability to support our channel partners across Eastern Europe. With SonicWall’s expertise in cybersecurity, we can better equip our partners to meet the security needs of businesses in this market. Our channel reach and the strong cybersecurity culture in the region are a solid basis for our shared success” About Infinigate The Infinigate Group, the leading technology platform and trusted advisor in Cybersecurity, Cloud & Network Infrastructure covers over 100 countries across EMEA, Australia and New Zealand. In the 2023-2024 financial year the Infinigate Group revenue reached 2.3B€. Our focus and deep technical expertise on cybersecurity, secure networks and secure cloud for SMB and enterprise set us apart. Our 1,250 employees provide locally tailored services complementing a robust central supply chain, sparking growth for our partners, MSSPs and vendors. In 2022, Starlink, Vuzion (now Infinigate Cloud) and Nuvias became part of the Infinigate Group. In 2024, Wavelink became an Infinigate Group company, adding coverage for the Australian and New Zealand (ANZ) market. For additional information please visit www.infinigate.com About SonicWall SonicWall is a cybersecurity forerunner with more than 30 years of expertise and is recognized as a leading partner-first company. With the ability to build, scale and manage security across the cloud, hybrid and traditional environments in real-time, SonicWall provides seamless protection against the most evasive cyberattacks across endless exposure points for increasingly remote, mobile and cloud-enabled users. With its own threat research center, SonicWall can quickly and economically provide purpose-built security solutions to enable any organization—enterprise, government agencies and SMBs—around the world. For more information, visit www.sonicwall.com or follow us on Twitter, LinkedIn, Facebook and Instagram.

Read More
" alt="" />
October 31, 2024

Government Organizations Face Surge in Malware and DDoS Attacks, Raising Alarms Over Potential Election Disruption

Newest report highlights some escalating risks to critical infrastructure as election day approaches MILPITAS, Calif. — October 31, 2024 — SonicWall released its latest threat brief focused exclusively on governments, reporting a staggering 236% year-over-year increase in malware-related attacks against government organizations globally during the first quarter of 2024. This alarming trend coincides with a notable 27% rise in attacks in the month leading up to the upcoming election, underscoring the urgent need for enhanced security measures. SonicWall's comprehensive threat intelligence reveals a 33% increase in attacks related to the software supply chain since the start of the year. Additionally, DDoS (Distributed Denial of Service) attacks are on track to surpass last year's figures by 32% - underscoring the escalating risks to critical infrastructure as election day approaches. “As attackers continue to attack critical government services and election-related systems, the importance of multi-layered cybersecurity measures cannot be overstated,” said Executive Director of Threat Research Doug McKee. "In a rapidly evolving threat landscape, the stakes have never been higher. We must  embrace cross-industry collaboration and threat intelligence information sharing  to ensure the integrity of our electoral processes and protect our vital infrastructure from those seeking to exploit  these systems. "  Rising Threats to Election Security The recent Hezbollah pager supply chain attack serves as a stark reminder of how easily everyday devices can be exploited to launch significant cyberattacks. As attackers target seemingly innocuous devices lacking stringent security protocols, the risk extends to critical election infrastructure. For instance, compromised IP cameras, frequently utilized at polling locales, could be weaponized or compromised to disrupt essential operations. SonicWall data highlights the pressing need for vigilance, as the company has successfully thwarted over 12.9 million attacks targeting IP cameras this year alone. These devices, often overlooked in cybersecurity strategies, present an enticing entry point for cybercriminals aiming to undermine public trust in the electoral process.  The Vulnerability of IoT Devices The growing reliance on Internet of Things (IoT) devices within government operations raises significant concerns. Many of these devices, including security systems and smart sensors, lack robust defenses, making them attractive targets for malicious actors. SonicWall emphasizes the urgent need for organizations to implement rigorous security measures to protect against the exploitation of vulnerable devices. The potential consequences of these vulnerabilities extend far beyond traditional cybersecurity threats, threatening the integrity of national infrastructure and electoral security. Call to Action As the election approaches, SonicWall urges government organizations to prioritize cybersecurity by strengthening their defenses against malware and DDoS attacks. By implementing advanced security solutions and enhancing awareness of IoT vulnerabilities, organizations can better safeguard their operations against these escalating threats. For more information about SonicWall and see the Government Threat Brief, please visit https://www.sonicwall.com/resources/brief/2024-threat-brief-government. About SonicWall SonicWall is a cybersecurity forerunner with more than 30 years of expertise and is recognized as a leading partner-first company. With the ability to build, scale and manage security across the cloud, hybrid and traditional environments in real-time, SonicWall provides seamless protection against the most evasive cyberattacks across endless exposure points for increasingly remote, mobile and cloud-enabled users. With its own threat research center, SonicWall can quickly and economically provide purpose-built security solutions to enable any organization—enterprise, government agencies and SMBs—around the world. For more information, visit www.sonicwall.com or follow us on Twitter, LinkedIn, Facebook and Instagram.

Read More