Monthly Malware Digest, January 2024

7 February 2024

Report

January saw a 173% increase in new malware sites hosted in India, with a welcome 41% decrease in the US. Mirai is back as the most common malware with 851 samples shared, and there are now 19,292 YARA rules available for hunting on YARAify - find out more in January's malware report.



Part 2 – Effective strategies against inbound malicious email: using your own data

8 February 2024

Blog

In part two of effective strategies against inbound malicious email. Learn how to determine whether incoming email is malicious by leveraging your own unique email infrastructure data.

Monthly Malware Digest, January 2024

7 February 2024

Report

January saw a 173% increase in new malware sites hosted in India, with a welcome 41% decrease in the US. Mirai is back as the most common malware with 851 samples shared, and there are now 19,292 YARA rules available for hunting on YARAify - find out more in January's malware report.

Spamhaus Botnet Threat Update, Q4 2023

12 January 2024

Report

In Q4 2023, the number of botnet command and control (C&C) servers increased by 16%. China, the United States, and Russia were the countries leading the pack, with a significant spike in Bulgaria, and a disappointing surge in active botnet C&Cs across big-name networks.

If you query Spamhaus Projects’ legacy DNSBLs via DigitalOcean move to the free Data Query Service

11 January 2024

News

Are you currently using the Spamhaus Project’s DNS Blocklists (DNSBLs) via DigitalOcean? If you've answered "yes" to both of these questions, you need to make some changes to your email infrastructure.

Monthly Malware Digest, December 2023

9 January 2024

Report

This month URLHaus experienced a surge in new malware sites hosted across the APAC region, including China (360%), Singapore (265%) and Taiwan (103%). Whilst new entrant Sock5Systemz is #1 for samples shared - find out more in December's malware report.

Are you ready for the email authentication revolution?

19 December 2023

Blog

Matthew Vernhout, NetCore Cloud's VP, Deliverability (ENSA), explains how new email authentication changes spearheaded by Yahoo and Gmail will impact your email strategy and what you can do to take proactive measures.

WHOIS: identification or correlation?

7 December 2023

Blog

Recently, WHOIS data was used to uncover a large cluster of domains used for a fake URL-shortener scheme and a massive SMS phishing operation, known as Prolific Puma. Spamhaus Technology's Head of Data Carel Bitter explores why this case is particularly interesting and the role of WHOIS data in identification and correlation.

Monthly Malware Digest, November 2023

5 December 2023

Report

This month saw an increase in active malware distribution sites across Central Europe. New October entrant ShadowPad dominated the ThreatFox Top 15s with a +459.82% increase. Meanwhile, YARAify scanned over 8 million distinct files! Read the full report here.

What is an email sunset policy and why do you need one?

29 November 2023

Blog

A sunset policy is an essential component of any successful email program. Find out why a sunset policy is essential and what you need to do to effectively implement one.