EMEA is top source of phishing attacks worldwide according to NTT Security Global Threat Intelligence Report
09 May 2017
- UK third most common source of attacks against EMEA
- UK second only to the US as top source of all global attacks
Over half (53 per cent) of the world’s phishing attacks originated in EMEA, according to the 2017 Global Threat Intelligence Report (GTIR) published by NTT Security, the specialised security company of NTT Group. Analysing global threat trends (1 Oct 2015-31 Sept 2016), the report also shows that of all phishing attacks worldwide, 38 per cent came from the Netherlands, second only to the US (41 per cent). The data shows that nearly three-quarters (73 per cent) of all malware globally was delivered to its victims because of a phishing attack.
According to the GTIR, which highlights the latest ransomware, phishing and DDoS attack trends and the impact of these threats against organisations, the UK was the third most common source of attacks against EMEA, behind the US (26 per cent) and France (11 per cent). In terms of top attack source countries globally, the UK was second only to the US (63 per cent) accounting for 4 per cent of all attacks, just behind China on 3 per cent.
The report reveals that some of the biggest regional differences related to brute force attacks, which are commonly used to crack passwords. Of all brute force attacks globally, 45 per cent started in EMEA – more than the Americas (20 per cent) and Asia (7 per cent) combined. In addition, 45 per cent of brute force attacks that targeted EMEA customers also started in the region.
“While phishing attacks affected organisations everywhere, EMEA unfortunately emerged as the top region for the source of these attacks. These figures, combined with those for brute force attacks, should be of very serious concern for any organisation doing business in EMEA, especially with the EU General Data Protection Regulation (GDPR) just around the corner. Any organisation processing data belonging to EU citizens need to demonstrate that their information security strategy is robust,” comments Dave Polton, Global Director of Innovation at NTT Security who is calling for more active collaboration between business, government and law enforcement agencies to tackle global threats and to ensure measures are in place that will have a long-lasting impact on global security.
Other key EMEA figures:
• In EMEA, over half (54%) of all attacks were targeted at just three industry sectors – Finance (20%), Manufacturing (17%) and Retail (17%).
• Over 67% of malware detected within EMEA was some form of Trojan.
• Top services used in attacks against EMEA – File shares (45%), Websites (32%) and Remote administration (17%).
Frank Brandenburg, COO and Regional CEO, NTT Security, concludes: “We all know that no security plan is guaranteed, and there will always be some level of exposure, but defining an acceptable level of risk is important. Clients are starting to understand that by default every employee is part of their organisation’s security team, and businesses are now seeing the value in security awareness training, knowing that educating the end user is directly connected to securing their enterprise. Expanding cyber education and ensuring employees adhere to a common methodology, set of practices, and mind set are key elements. Clients see that assisting and coaching their employees (end users) on the proper usage of technology will only enhance the organisation’s overall security presence.”
Download the NTT Security Global Threat Intelligence Report: www.nttsecurity.com/GTIR2017.
About the GTIR
With visibility into 40 per cent of the world’s internet traffic, NTT Security summarises data from over 3.5 trillion logs and 6.2 billion attacks for the 2017 Global Threat Intelligence Report (GTIR). Analysis is based on log, event, attack, incident and vulnerability data. It also includes details from NTT Security research sources, including global honeypots and sandboxes in over 100 different countries in environments independent from institutional infrastructures.
About NTT Security
NTT Security is the specialized security company of NTT Group. With embedded security we enable Group companies (Dimension Data, NTT Communications and NTT DATA) to deliver resilient business solutions for clients’ digital transformation needs. NTT Security has 10 SOCs, seven R&D centers, over 1,500 security experts and handles hundreds of thousands of security incidents annually across six continents.
NTT Security ensures that resources are used effectively by delivering the right mix of consulting and managed services for NTT Group companies – making best use of local resources and leveraging our global capabilities. NTT Security is part of the NTT Group (Nippon Telegraph and Telephone Corporation), one of the largest ICT companies in the world. Visit nttsecurity.com to learn more.