WatchGuard announced the results of its Internet Security Report analyzed by WatchGuard Threat Lab researchers in Q2022 4.
Despite an overall decline in malware, WatchGuard Threat Lab researchers identified one case of malware decrypting HTTPS (TLS/SSL) traffic and examining Fireboxes. This indicates that malware activity is directed towards encrypted communication. Since only about 20 percent of the Fireboxes that provide data for the report have decryption enabled, the vast majority of malware goes undetected. Encrypted malware activity has been a recurring theme in recent Threat Lab reports.
WatchGuard Chief Security Officer Corey Nachreiner stated that security professionals should enable HTTPS inspection to detect and address these threats before they do any damage. hides its full frame.” made a statement.
Other key findings from the Internet Security Q4 Report include:
- Endpoint ransomware detections up 627 percent
- 93 percent of malware hides behind encryption
- Network-based malware detections fell nearly 4 percent in Q9,2 compared to the previous quarter
- Endpoint malware detections increased by 22 percent
- Zero-day or dangerous malware drops to 43 percent on unencrypted traffic
- Phishing attacks increased
- Network attack volume flat compared to previous quarter
- LockBit remains a common ransomware group and malware variant.