Financial Cyber Threats In 2013, a study conducted by Kaspersky Lab, shows that cyber criminals are increasingly trying to gain access to the online accounts of users. Last year, the number of cyber attacks involving financial malware increased to 28.4 million – 27.6% more than 2012.
Programs designed to steal financial information include banking Trojans, key-loggers and two relatively new classes of malware – one that steals from Bitcoin wallets and another that downloads software to generate the crypto-currency. The combined activity of programs targeting Bitcoin became one of the main drivers behind the growth in financial cyber attacks in 2013. Another factor was the discovery of a number of dangerous vulnerabilities used by criminals to conduct cyber attacks via the popular Java platform.
Kaspersky Lab security solutions protected 3.8 million users from financial attacks (an increase of 18.6% year on year) in 2013. Banking Trojans, including the notorious Zbot, Carberp, and SpyEye programs, accounted for two-thirds of financial malware. However, compared with 2012 the share of this type of malware has fallen due to an increase in activity by malicious programs targeting Bitcoin.
In Afghanistan, Bolivia, Cameroon, Mongolia, Myanmar, Peru, Turkey and Ethiopia, the proportion of financial cyber-crime is the greatest. In these countries, this type of threat accounted for more than 12% of all malware incidents.
In South Africa, over 83,000 attempts to infect user’s PCs with financial malware were detected by Kaspersky Lab’s solutions in 2013. This is an over 105% increase in comparison to 2012. An average number of attacks of financial malware per user was 3,6; the number of users attacked raised by 139% in comparison with 2012 – more than 4% of users faced them.
The proportion of key loggers, malicious programs that intercept keystrokes, also saw a gradual decline as cyber criminals switch from these highly specialized program to Trojans with a wide range of functions.
With the explosive growth of in the number of mobile apps capable of stealing money from users’ bank accounts in 2013, there was also a lot of activity in the mobile malware segment. The number of these types of threats in Kaspersky Lab’s collection grew almost 20 times throughout the year. The vast majority of attacks targeted the owners of Android smartphones.
Sergey Lozhkin, Senior Security Researcher at Kaspersky Lab said,
“Last year saw a significant increase in the proportion of financial cyber threats, with malware designed to steal money playing a key role. The popularity of banking Trojans and other programs targeting financial data is due to the fact cyber criminals can use them to make money quickly. The current situation has forced users and financial institutions to take active measures against online threats, while security software vendors have to develop new protection solutions.”
To counter financial cyber threats, Kaspersky Lab solutions for home users and small businesses integrate Safe Money technology that protects user data during online banking and e-payment sessions.
Companies that provide financial online services to their clients may benefit from Kaspersky Lab’s comprehensive Kaspersky Fraud Prevention platform. It was developed to deliver rigorous, multi-layered security for online transactions: a server solution to check customer transactions as well as applications to protect users’ computers and mobile devices.
Malware is not the only method used by criminals to steal money online; phishing, or creating fake copies of sites to obtain confidential user data, is also popular. In 2013, Kaspersky Lab protection solutions blocked more than 330 million phishing attacks, of which 31.45% were performed using the names of banks, e-payment systems or online stores.
The ‘Financial cyber threats in 2013’ report used data obtained voluntarily from Kaspersky Security Network participants. Kaspersky Security Network is a globally distributed cloud-based infrastructure designed to quickly process depersonalized data about threats which users of Kaspersky Lab’s products encounter.