Solutionary SERT Threat Report: Four Countries Represent Source of 96 Percent of Malware Found in Q3

OMAHA, NE--(Marketwired - Oct 29, 2015) - Solutionary, an NTT Group security company (NYSE: NTT) and the next-generation managed security services provider (MSSP), today announced the results of its Security Engineering Research Team (SERT) Quarterly Threat Report for Q3 2015. Solutionary SERT performed a broad analysis of the threat landscape, which unearthed several key findings, including 96 percent of the malware detected during Q3 '15 represented four countries -- the U.S., Netherlands, China and Japan. Readers of the report will also find deeper analysis of the Ashley Madison breach as well as details foreshadowing an increase malware related activity as holiday-themed attack campaigns ramp up in Q4.

"Our report continues to illustrate how difficult it is for both U.S. government agencies and enterprises to secure their data and eliminate harmful malware or other vulnerabilities in their environments," said Rob Kraus, director of security research and strategy, Solutionary. "We remain vigilant in messaging to our customers that one of the best ways to verify if their organization has effective security controls in place is to test their environment through intrusion and application testing. Second, track all findings and vulnerabilities. And then finally, prioritize those problems and build an action plan to mitigate the greatest risks."

Key Findings:

• The top four countries (U.S., Netherlands, China and Japan) accounted for over 96 percent of the malware detected during Q3 '15.
• An increase in reconnaissance activity in Q2 '15 was followed by an increase in attacks during Q3 '15.
• Detected attacks jumped nearly 42 percent from what was detected in Q2 '15, which is typical within the campaigns observed and an expected result as attackers progress through the lifecycle of attack phases.
• Web application attacks took over the top "type of attack" spot with 33 percent of all detected attacks.
• Overall detected malware dropped nearly 40 percent from what was detected in Q2 '15.
• The Ashley Madison breach included data from as many as 31 million users, with 64 percent of those users from the U.S. (almost 20 million).
• Top five U.S. States in the Ashley Madison breach include California, Texas, New York, Florida and Pennsylvania. California accounted for 12 percent of U.S. records and Florida accounting for highest per-capita percent at nearly six percent.

Readers will find several sections in the report that provide timely, actionable information they can use to help protect against today's most malicious attack tactics and vectors.

To access a copy of the complete report, please visit: https://www.solutionary.com/threat-intelligence/threat-reports/quarterly-threat-reports/sert-threat-report-q3-2015

About Solutionary
Solutionary, an NTT Group Security Company (NYSE: NTT), is the next generation managed security services provider (MSSP), focused on delivering managed security services, professional security services and global threat intelligence. Comprehensive Solutionary security monitoring and security device management services protect traditional and virtual IT infrastructures, cloud environments and mobile data. Solutionary clients are able to optimize current security programs, make informed security decisions, achieve regulatory compliance and reduce costs. The patented, cloud-based ActiveGuard® service platform uses multiple detection technologies and advanced analytics to protect against advanced threats. The Solutionary Security Engineering Research Team (SERT) researches the global threat landscape, providing actionable threat intelligence, enhanced threat detection and mitigating controls. Experienced, certified Solutionary security experts act as an extension of clients' internal teams, providing industry-leading client service to global enterprise and mid-market clients in a wide range of industries, including financial services, health care, retail and government. Services are delivered 24/7 through multiple state-of-the-art Security Operations Centers (SOCs).