The ongoing threats in cyberspace are becoming increasingly significant on a global scale, and Latin America is no exception. ESET, a prominent company in proactive threat detection, outlines the most active threats observed during the first half of 2024, analyzing how many of these trends persist over time. It underscores the importance of being aware and prepared for such risks as users.

The top five countries with the highest threats detected by ESET telemetry are Peru, followed by Mexico, Ecuador, Brazil, and Argentina.

Malware distributed within the region in the first half of 2024 averages 2.6 million unique samples, including injectors, trojans, downloaders, worms, exploits, backdoors, spyware, rootkits, and droppers.

In terms of phishing, despite being one of the most commonly employed engineering techniques for over 20 years, it continues to have a substantial impact in the cybersecurity realm. Nearly 2 million unique samples were identified through ESET telemetry, affecting the entire region from Mexico to Argentina during this first semester.

Distribution of the Most Exploited Software

The operating system that remains the most exploited by cybercriminals, according to ESET, is Windows, across its various architectures, including many that no longer receive official support from the manufacturer. While Windows is the most targeted software, there are also others that cybercriminals aim for:

Most Detected Families in the First Half of 2024 by ESET Telemetry:

1. “Injector” Codes: These codes aim to insert malicious software into legitimate system processes to perform various actions, such as downloading additional malware capable of monitoring the victim’s activities or remotely controlling the computer.

2. The Trojan Known as “Kryptik”: This Trojan’s primary infection vector is through malicious file attachments that may arrive via email, pirated software, or fake update assistants. Its main goal is to extract financial information from victims, impersonate their identity for more effective scams, and integrate the infected device into a botnet.

3. The Malware Called “Expire”: This worm affects Windows operating systems, causing the infected device to become part of a botnet. Its primary tasks include stealing information from victims and utilizing the computer’s resources to launch denial-of-service (DoS) attacks.

Understanding Cybersecurity Threats in Latin America – 2024 Overview

The constant threats in cyberspace are taking on an increasingly critical role worldwide and Latin America is no exception. ESET, a leading company in proactive threat detection, details the most active threats during the first half of 2024, analyzing ongoing trends and the importance of user awareness and preparedness against such risks.

Top Threat Landscape in Latin America

Among the top 5 countries with the greatest threats detected by ESET telemetry are:

1. Peru
2. Mexico
3. Ecuador
4. Brazil
5. Argentina

Malware Distribution Metrics

In the first half of 2024, malware distributed in the region averaged 2.6 million unique samples. These samples include various types, such as:

• Injectors
• Trojans
• Downloaders
• Worms
• Exploits
• Backdoors
• Spyware
• Rootkits
• Droppers

The Persistent Threat of Phishing

Phishing remains one of the most prevalent engineering techniques in the cybersecurity landscape, impacting users globally for over two decades. In the first semester of 2024, nearly 2 million unique phishing samples were identified, affecting users throughout Latin America, from Mexico to Argentina.

Most Exploited Software in 2024

The operating system most exploited by cybercriminals continues to be Windows, across its various architectures, including older versions lacking extended official support. Other software commonly targeted includes:

Most Detected Malware Families in 2024

Understanding the Types of Malware

1. Injectors

Injectors are designed to infiltrate legitimate system processes with malicious code, enabling them to download further malware, monitor victim activity, or take control of the device remotely.

2. Kryptik Trojan

This Trojan often enters systems through malicious email attachments and uses various methods to steal financial information, creating opportunities for identity theft and more efficient scams.

3. Expire Worm

This worms specifically target Windows operating systems, compromising devices to form part of a botnet and facilitating denial of service (DoS) attacks while stealing sensitive information.

Cybersecurity Best Practices

Users can take several steps to protect themselves from these threats:

• Keep software updated: Regularly update your operating system and applications.
• Utilize antivirus software: Invest in reliable antivirus and anti-malware solutions to safeguard your devices.
• Be cautious with email: Avoid opening attachments or clicking links from unknown senders.
• Implement strong passwords: Use a mix of letters, numbers, and symbols and change passwords regularly.
• Educate on phishing attempts: Recognize warning signs of phishing and fraudulent schemes.

Real-World Impact: Case Studies

Over the years, numerous organizations have fallen prey to cyberattacks that could have been mitigated through preventive measures. For instance, a notable attack on a Brazilian financial institution in 2023 involved sophisticated phishing techniques that compromised customer data. The attack highlighted the importance of:

• Implementing two-factor authentication
• Regular employee training on cybersecurity awareness
• Active monitoring of network traffic to detect suspicious activities

Final Thoughts

As the cyber threat landscape continues to evolve, staying informed about the types of threats and how to combat them is crucial for individuals and businesses alike. Regularly updating knowledge on cybersecurity trends and best practices can go a long way in protecting against potential attacks.