Aussies among world's most hacked as spam eases, malware explodes

Australia has claimed the crown of the world's most heavily-attacked countries

Australia may be located half a world away from the heavily-populated European and US zones, but that hasn't stopped us from claiming the crown as one of the world's most heavily-attacked countries, according to figures released this week as part of Symantec's latest Symantec Intelligence Report.

The monthly report collates data from Symantec-owned message-security firm MessageLabs and Symantec's own broad security practice and to provide a quantitative update on the state of online security.

And that state, the latest figures suggest, suggests that online troublemakers are rapidly shifting their vectors of attack: while spam volumes dropped 3.7 per cent from October, to 70.5 per cent of all emails, the number of malicious Web sites being blocked per day rocketed 47.8 per cent over the previous month, to 4915 new sites being blocked every day.

One in every 255 emails was malicious, while one in 8300 of those, or one in 2 million emails, was considered to be "highly targeted" – customised for believability using social engineering or other techniques. Large companies – those with 2500 or more employees – were at far greater risk of being targeted by a highly-targeted attack, with Symantec's cloud security service blocking 36.7 targeted attacks per day; by contrast, the lowest cohort, those with 1000 to 1500 employees, had just 3.1 such attacks daily.

The explosion in malicious Web sites is not unexpected, with rapidly-spreading attacks continuing to infect new sites at a rapid rate weeks or months after they emerge. "Often this number is higher when Web-based malware is in circulation for a longer period of time to widen its potential spread and increase its longevity," the report's authors noted.

It is Symantec's geographical breakdown, however, that may raise the most interest: average Australian companies receive one targeted attack every 3.1 days, putting it fourth on the leader board of most-attacked countries; by contrast, US companies were attacked once a day, UK companies once every 1.2 days, Chinese companies every 16.3 days, and New Zealand companies every 61.8 days.

Phishing remains a big problem in Australia, which receives 6.9 per cent of the world's phishing emails – putting it third behind the UK (61.2 per cent) and US (15.3 per cent). The number of phishing Web sites increased by two-thirds in November, with Facebook by far the most common target. And email-borne malware accounted for 5.6 per cent of traffic in Australia, again putting it third behind the UK (61.2 per cent) and US (16.3 per cent).

Interestingly, the most common trigger for a Web-based interception through Symantec's filtering service was advertisements, which accounted for 32.4 per cent of Symantec-enforced security blocks during the month. This reflects both a desire for a cleaner corporate Web experience, and a risk from 'malvertisements' with malicious code embedded.

Follow @CSO_Australia and sign up to the CSO Australia newsletter.

Join the CSO newsletter!

Error: Please check your email address.

Tags Symantec intelligence reportspamsymantecsecuritymalware

More about

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by David Braue

Latest Videos

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

  • 150x50

    IDG Live Webinar:The right collaboration strategy will help your business take flight

    Speakers - Mike Harris, Engineering Services Manager, Jetstar - Christopher Johnson, IT Director APAC, 20th Century Fox - Brent Maxwell, Director of Information Systems, THE ICONIC - IDG MC/Moderator Anthony Caruana

    Play Video

More videos

Blog Posts