Skip to content
Contact Sales

COVID-19 Pandemic Sparks 72% Ransomware Growth, Mobile Vulnerabilities Grow 50%

Skybox Security’s publishes mid-year update to its 2020 Vulnerability and Threat Trends Report predicting 2020 will break a new vulnerability record

SAN JOSE, Calif.
July 20, 2020
Key findings from the report include:
  • 20,000+ new vulnerability reports predicted for 2020, shattering previous records.
  • 50% increase in mobile vulnerabilities highlights dangers of blurring line between corporate and personal networks.
  • Ransomware thrives during COVID-19 pandemic, with new samples increasing by 72%.
  • Attacks on critical infrastructure, including healthcare companies and research labs, have added to chaos.

Skybox® Security, a global leader in cybersecurity management, today published the mid-year update to its 2020 Vulnerability and Threat Trends Report. The report analyzes the vulnerabilities, exploits and threats in play over the first half of a year dominated by the chaos surrounding the COVID-19 pandemic. The report, compiled by Skybox® Research Lab, aims to help organizations align their security strategy with the reality of the current threat landscape.

“The global COVID-19 pandemic has completely reshaped the way that organizations and their employees work” said Ron Davidson, VP of R&D and CTO for Skybox Security. “With the majority of the workforce now working remotely, the network perimeter has significantly widened – securing this perimeter now needs to be a top strategic priority. Organizations need to be able to identify the flaws that sit within both personal and professional devices. They also need to be able to model their expanded network so that they can understand all potential attack vectors. If they do not have these capabilities, then they will not be able to manage the mass of 20,000 new vulnerabilities, leaving them vulnerable to attack; something that they cannot afford at a time of global financial uncertainty.”

Also notable in the report is the increase of ransomware’s popularity, with the number of new samples rising by 72% over the first half of the year.

Sivan Nir, Threat Intelligence Team Leader for Skybox Security, commented on this rise. “We observed 77 ransomware campaigns during the first few months of the pandemic – including several on mission-critical research labs and healthcare companies. The focus and the capability of attackers is clear: they have the means to impart serious financial and reputational harm on organizations. The need for focused remediation strategies that are informed by full network visibility and contextual, data-rich intelligence has never been more pressing.”

The report further reveals that the volume of mobile vulnerabilities has increased by 50 percent. This increase is wholly driven by new Android deficiencies (which increased by 110 percent from 230 last year to 484 this year), after the number of new iOS vulnerabilities dropped by 23 percent from 152 to 117. In previous years such an increase may not have concerned security leaders, but after COVID-19 pandemic blurred the line between corporate and domestic spaces it underlines the importance of securing all possible access points.

In order to weather the COVID-19 pandemic and the resulting new threat landscape, organizations need to incorporate accurate, up-to-date threat intelligence into their vulnerability management strategy. Skybox’s approach offers a systematic process where vulnerabilities are discovered on a continual basis; prioritized in the context of the network, assets and threats; and remediated or mitigated in accordance with the risk they pose. Such an approach is vital to being proactive against today’s threats and adaptive to the volume of new threats yet to come.

To read the full mid-year update to the 2020 Vulnerability and Threat Trends Report, click here.

Tweet This: As orgs deal with increased threats, #vulnerabilities are set to pass 20,000 this year — a new record. Read how #COVID has shaped the #threatlandscape in @SkyboxSecurity’s mid-year report: https://lp.skyboxsecurity.com/WICD-2020-07-WW-VT-Trends_Reg.html

About Skybox Security

Hundreds of the largest and most security-conscious enterprises in the world rely on Skybox for the insights and assurance required to stay ahead of dynamically changing attack surfaces. Our Continuous Exposure Management Platform delivers complete visibility, analytics, and automation to quickly map, prioritize, and remediate exposures across enterprise networks and cloud environments. Skybox frees security teams to focus on strategic business initiatives while ensuring enterprises remain protected.

About Skybox Research Lab

The Skybox Research Lab is a team of security analysts who daily scour data from dozens of security feeds and sources as well as investigate sites in the dark web. The Research Lab validates and enhances data through automated as well as manual analysis, with analysts adding their knowledge of attack trends, cyber events and the tactics, techniques and procedures (TTPs) of today’s attackers. Their ongoing investigations determine which vulnerabilities are being exploited in the wild and used in distributed crimeware such as ransomware, malware, exploit kits and other attacks exploiting client– and server–side vulnerabilities. For more information on the methodology behind the Skybox Research Lab and to keep up with the latest vulnerability and threat intelligence, visit www.vulnerabilitycenter.com.

The industry’s most comprehensive and accurate exposure analysis.

Leadership

Our executive team is comprised of seasoned Silicon Valley business leaders and cybersecurity experts.

Company

We pioneered the leading Security Posture Management Platform that powers proactive cybersecurity programs.