Experts have named the most dangerous file formats in emails

According to data from the third quarter, in more than 80% of infected emails, recipients saw a file with a ZIP or RAR extension. In addition to files, attackers continue to send users malicious documents in PDF and DOCX formats: their share increased from 6.4% to 8.8% compared to the previous quarter, replacing Excel tables in XLS format.

Analysts associate the decision to abandon phishing links with higher costs for hackers, since in this case the “malicious payload” must be stored on their devices. Using archived files reduces the cost of an attack and helps avoid built-in mail filters that automatically place emails with phishing links in spam, FACCT explained.

The most popular type of malware (contained in 63% of emails) remains spyware, distributed according to the Malware-as-a-Service model. Hackers can purchase a copy of such a program on a one-time or subscription basis and receive a percentage of the ransom. A sharp increase in popularity among cybercriminals (from 10% to 23%) was demonstrated by downloaders capable of installing any other malware on the user’s device. Third place (8%) is occupied by backdoor software, which allows access to a computer, server or other device without going through authentication.

“The use of spyware offers attackers a wide range of opportunities: from obtaining financial benefits by selling stolen data or causing reputational damage by publishing classified information to developing a more complex attack with the consequent compromise of clients or contractors of the affected company. ”, warned the head of the FACCT, Yaroslav Kargalev.

Most of the time, malicious emails are sent from free Gmail (55.3% of cases are used only in 23.3% of cases); At the same time, scammers often use so-called spoofing, replacing sender addresses in emails, FACCT experts noted.