WOBURN, MA – May 13, 2015 — /BackupReview.info/ — According to Kaspersky Lab’s Q1 2015 analysis of spam and phishing, the new generic top-level domain (gTLD) registration program, launched in January 2014 and intended for use by relevant communities and organizations, has proved irresistible to spammers. For cybercriminals, the new domains represent an excellent tool for promoting unwanted or illegitimate advertising campaigns.

Additionally, spam traffic in Q1 of 2015 included a large number of mass mailings with Microsoft Word or Excel attachments containing macro viruses. Fraudsters tried to lure users into opening the malicious files by disguising them as various documents, including financial. The fake messages often imitated notifications from well-known organizations and services.

Spam and phishing statistics

  • The proportion of spam in email traffic was 59.2 percent, which is 6 percent lower than in the previous quarter.
  • The USA retained its position as the biggest source of spam, sending 14.5 percent of unwanted mail.
  • Kaspersky Lab products recorded 50,077,057 instances that triggered the “Antiphishing” system. This was 1 million more than in the previous quarter.
  • Phishing against customers of financial organizations accounted for 37.06 percent of all registered incidents.
  • Insurance was one of the most popular themes for spam using the new domains both in terms of the number of messages and the number of changing domains seen in mass mailings.

New domain scams
The gTLD registration program gives organizations the opportunity to choose a domain zone that is consistent with their activities and the theme of their sites. For example, job websites can now use a .work domain and scientific websites could choose a .science domain. The business opportunities provided by the new gTLD program were enthusiastically endorsed by the Internet community and the active registration of new domain names is ongoing.

Spammers and cybercriminals have also been quick to react to the trend. As a result of their activities, new domain zones almost immediately became an arena for large-scale distribution of advertising spam, phishing and malicious emails. According to Kaspersky Lab’s email traffic observations, there was a considerable increase in the number of new domains that sent out spam content in Q1 of 2015.

In general there wasn’t much connection between the theme of the spam and the domain name, but in some cases there was a clear logical connection between them. For example, emails sent from the .work domains contained offers to carry out various types of work including household maintenance, construction or equipment installation. Additionally, many of the messages from the .science domains were advertising schools that offer distance learning and colleges to train nurses, criminal lawyers and other professionals.

“When looking at Q1 in general and the type of spam on the new domains, insurance was one of the hottest topics in terms of the number of messages and the number of changing domains in mass mailings. This covers all types of insurance – life, health, property, cars, animals, and funeral insurance,” said Tatyana Shcherbakova, Senior Spam Analyst at Kaspersky Lab.

To learn more about spam and phishing operations in Q1 2015, please read the blog post available at Securelist.com.

About Kaspersky Lab
Kaspersky Lab is the world’s largest privately held vendor of endpoint protection solutions. The company is ranked among the world’s top four vendors of security solutions for endpoint users*. Throughout its more than 17-year history Kaspersky Lab has remained an innovator in IT security and provides effective digital security solutions for large enterprises, SMBs and consumers. Kaspersky Lab, with its holding company registered in the United Kingdom, currently operates in almost 200 countries and territories across the globe, providing protection for over 400 million users worldwide. Learn more at www.kaspersky.com.

For the latest in-depth information on security threat issues and trends, please visit:
Securelist | Information about Viruses, Hackers and Spam
Follow @Securelist on Twitter

Threatpost | The First Stop for Security News
Follow @Threatpost on Twitter

* The company was rated fourth in the IDC rating Worldwide Endpoint Security Revenue by Vendor, 2013. The rating was published in the IDC report “Worldwide Endpoint Security 2014–2018 Forecast and 2013 Vendor Shares (IDC #250210, August 2014). The report ranked software vendors according to earnings from sales of endpoint security solutions in 2013.

Media Contact
Sarah (Bergeron) Kitsos
781.503.2615
sarah.kitsos@kaspersky.com
www.kaspersky.com

Source: Kaspersky

 

Related posts:

  1. Over a Quarter of Phishing Attacks in 2014 Targeted Users’ Financial Data
  2. Kaspersky Lab Finds For the Fourth Year in a Row that Login Information is Most Targeted by Malicious Email Spam
  3. Kaspersky Lab Study: About One Third of All Phishing Attacks Aimed at Online Financial Institutions
  4. Kaspersky Lab Reports Malicious Attack Increase in Q1 IT Threat Evolution Report
  5. Kaspersky Lab Bolsters Linux Mail Server Protection with Real-Time Threat Data and New Management Features
  6. Kaspersky Lab Reports: Phishers and Scammers Target the Upcoming FIFA World Cup 2014
  7. The Number of Financial Attacks Against Android Users Tripled in 2014
  8. One Billion More: Kaspersky Lab Reports on Cyber Threats in 2014
  9. Kaspersky Launches Free Anti-Theft Android App Phound!
  10. Kaspersky Lab and INTERPOL Report: Every Fifth Android User Faces Cyber-Attacks

Tags: ,