Ransomware Higher During Q3 Advanced Threat Defense Testing
October 11, 2017
By Jack Walsh

ICSA Labs encourages enterprises to consider the results of its quarterly advanced threat defense (ATD) security testing and to demand only ICSA Labs certified ATD solutions.  In ATD and the related ATD-Email testing, ICSA Labs tests to see how well security vendor solutions detect new and little-known malicious threats.  Testing for Q3 2017 just recently concluded and the results are posted.   

New malicious threats are sourced from multiple places including ICSA Labs’ spam honeypot which daily receives hundreds of thousands of spam messages.  Much of this spam contains Ransomware in archive file attachments.  After comparably mild levels of Ransomware during ICSA Labs' Q1 2017 and Q2 2017 advanced threat defense testing periods, the amount of archive-based Ransomware received into ICSA Labs’ spam honeypot reached its second highest quarterly level since ICSA Labs began recording this menace 2 years earlier in mid-to-late 2015. 

The figure below indicates that an average of over 39,000 spam messages with attached Ransomware archives were received each day by ICSA Labs’ spam honeypots during the Q3 2017 testing period.  This represents a 1,784% jump in the average daily number of received archive-based Ransomware as compared to the levels seen during the Q2 2017 ATD testing period.

As one might expect, many Ransomware samples were part of the Q3 2017 ATD test set. The most prevalent types of Ransomware seen during the Q3 ATD test cycle were Ergop and Locky.  Other malicious Ransomware in the test set included Betisrypt, Cerber, Genasom, LockScreen, Mytreex, Reyptson, Septrypt, Spora, and Troldesh samples. 

Follow ICSA Labs’ quarterly ATD testing results to see if these levels of malicious Ransomware continue as well as what threats will emerge to take its place.  To best protect your organization from new and little-known threats, remember to tell your decision makers and RFP-writers to purchase ICSA Labs certified ATD and ATD-Email solutions.


Post new comment

  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd>

More information about formatting options

This question is for testing whether you are a human visitor to prevent automated spam submissions.
Enter the characters shown in the image.