2013 CHECK POINT ANNUAL SECURITY REPORT
02
_ THREATS TO YOUR ORGANIZATION
012
How Your Organization can be
Infected with Malware
There are multiple entry points to breach an organization’s
defenses: browser-based vulnerabilities, mobile phones,
malicious attachments and removable media, to name a
few. In addition, the explosion of Web 2.0 applications and
social networks used as business tools are giving hackers
a huge opportunity to lure victims to click on malicious
links or on “malvertisement” – malicious advertisements
running on legitimate websites.
Although botnets are considered to be one of the most
prominent network security threats today, organizations
are facing additional security threats from the world of
malware: viruses, worms, spyware, adware, trojans and so
on. Our research shows that in 75% of organizations a host
accesses a malicious website.
The following pie presents number of hosts that accessed
a malicious website by the percentage of organizations.
In over 50% of the organizations at least five hosts
accessed a malicious website.
18
%
3-4 hosts
31
%
1-2 hosts
16
%
9-16 hosts
15
%
More than 16 hosts
20
%
5-8 hosts
Access to Malicious Sites by Number of Hosts
(% of Organizations)
A malware can be downloaded by a user or by a bot that has
already infected the host. We have found that in 53% of the
organizations a malware was downloaded from the corporate
network. In over 50% of these organizations, we have found
that more than four hosts have downloaded malware.
The following pie presents the average frequency of malware
downloads in the organizations under our research.
Malware Downloads Frequency
(% of Organizations)
43
%
More than a day
14
%
Up to 2 hours
19
%
2-6 hours
12
%
6-12 hours
12
%
12-24 hours
EVERY 23 MINUTES
A HOST ACCESSES A
MALICIOUS WEBSITE
Chart 2-G presents the number of hosts that downloaded
a malware. In more than 50% of the organizations, at least
five hosts downloaded a malware.
In our research, the majority of malware is found in the
USA, followed by Canada and United Kingdom as shown
in chart 2-F.
Anti-Virus protection is one of themethods to protect against
malware infections, however our research shows that 23% of
hosts in organizations do not update their Anti-Virus on a
daily basis. A host that is not running an up to date Antivirus
is exposed to the latest viruses. We have also found that 14%
of hosts in organizations do not even run an Anti-Virus on
host computers. Hosts that are not running an Anti-Virus is
in high potential to get infected with a malware.
Chart 2-D
Chart 2-E
Source: Check Point Software Technologies
Source: Check Point Software Technologies