In any business environment the mark of success often comes down to owning marketshare and the same holds true in the malware and toolkit business.
With that in mind, the 2.0 version of the BlackHole exploit kit leads the toolkit and the malware markets with a share of almost 76%, respectively 63%, said Security firm AVG Technologies, in its Community Powered Threat Report for the third quarter.
Since the crimekit’s authors launched the 2.0 version, experts said its market share will grow even further and the attacks will become even more “aggressive” because of the advanced evasion techniques integrated in.
“Blackhole is a sophisticated and powerful exploit kit, mainly because it is polymorphic and its code is heavily obfuscated to evade detection by antivirus solutions. The rapid update capabilities of the kit have also made it challenging for traditional antivirus vendors to track, which are the main reasons it has a high success rate,” said Yuval Ben-Itzhak, CTO at AVG Technologies.
AVG has been detecting a much higher rate of Blackhole Toolkit-based attacks than other toolkits, as Blackhole’s creator seeks to stay ahead of their competition, Ben-Itzhak said.
The report also details mobile banking attacks that rely on the Zeus-in-the-Mobile (ZitMo) malware. Up until now, the methods utilized by criminals against mobile phone users only allowed them to make small amounts of money per victim.
However, with the latest developments in malware technology, the crooks can empty an entire bank account in one go.
AVG researchers also found in this past quarter, cybercriminals started relying on malware hidden in image files. Innocent-looking files end up designed to deliver a payload to the users who visit compromised websites.