STOCK TITAN
  1. Home
  2. News
  3. ZS

New Research Shows Attackers Turning to Encrypted Attacks During Pandemic

Rhea-AI Impact
(Low)
Rhea-AI Sentiment
(Negative)
Tags
Rhea-AI Summary

Zscaler released its 2020 State of Encrypted Attacks report, revealing a staggering 260% increase in encrypted attacks, affecting key sectors including healthcare (1.6 billion attacks), finance (1.2 billion), and manufacturing (1.1 billion). The report highlights a 5x surge in ransomware attacks since March 2020, with phishing attempts nearing 200 million. Notably, 30% of SSL-based attacks were delivered through trusted cloud providers. Zscaler emphasizes the necessity of SSL inspection to safeguard against these escalating threats.

Positive
  • 260% increase in encrypted attacks highlights Zscaler's relevance in cybersecurity.
  • 1.6 billion attacks targeted healthcare, showcasing Zscaler's focus on high-risk sectors.
  • 5x increase in ransomware attacks underscores demand for Zscaler's solutions.
  • Identification of 30% of attacks occurring through trusted providers shows Zscaler's insight into the threat landscape.
Negative
  • None.

Encryption-Based Threats Grow By 260% in 2020

Healthcare, Finance and Manufacturing Under an Onslaught of Attacks

SAN JOSE, Nov. 10, 2020 (GLOBE NEWSWIRE) -- Zscaler, Inc., the leader in cloud security, today released its 2020 State of Encrypted Attacks report, published by the Zscaler ThreatLabZ team. The threat research reveals the emerging techniques and impacted industries behind a 260-percent spike in attacks using encrypted channels to bypass legacy security controls. The report provides guidance on how IT and security leaders can protect their enterprise from the rising trend of encrypted threats, based on insight sourced from over 6.6 billion encrypted threats across the Zscaler™ cloud from January through September 2020 over encrypted channels. To download and read, see the 2020 State of Encrypted Attacks.

Showing that cybercriminals will not be dissuaded by a global health crisis, they targeted the healthcare industry the most. Following healthcare, the research revealed the top industries under attack by SSL-based threats were:

  1. Healthcare: 1.6 billion (25.5 percent)
  2. Finance and Insurance: 1.2 billion (18.3 percent)
  3. Manufacturing: 1.1 billion (17.4 percent)
  4. Government: 952 million (14.3 percent)
  5. Services: 730 million (13.8 percent)

Other key findings include:

  • COVID-19 is Driving a Ransomware Surge: Zscaler researchers witnessed a 5x increase in ransomware attacks over encrypted traffic beginning in March, when the World Health Organization declared the virus a pandemic. Earlier research from Zscaler indicated a 30,000 percent spike in COVID-related threats, when cybercriminals first began preying on fears of the virus.

  • Phishing Attacks Neared 200 Million: As one of the most commonly used attacks over SSL, phishing attempts reached more than 193 million instances during the first nine months of 2020. The manufacturing sector was the most targeted (38.6 percent) followed by services (13.8 percent), and healthcare (10.9 percent).

  • 30 Percent of SSL-Based Attacks Delivered Through Trusted Cloud Providers: Cybercriminals continue to become more sophisticated in avoiding detection, taking advantage of the reputations of trusted cloud providers such as Dropbox, Google, Microsoft, and Amazon to deliver malware over encrypted channels.

  • Microsoft Remains Most Targeted Brand for SSL-Based Phishing: Since Microsoft technology is among the most adopted in the world, Zscaler identified Microsoft as the most frequently spoofed brand for phishing attacks, which is consistent with ThreatLabZ 2019 report. Other popular brands for spoofing included PayPal and Google. Cybercriminals are also increasingly spoofing Netflix and other streaming entertainment services during the pandemic.

“Cybercriminals are shamelessly attacking critical industries like healthcare, government and finance during the pandemic, and this research shows how risky encrypted traffic can be if not inspected,” said Deepen Desai, CISO and Vice President of Security Research at Zscaler. “Attackers have significantly advanced the methods they use to deliver ransomware, for example, inside of an organization utilizing encrypted traffic. The report shows a 500 percent increase in ransomware attacks over SSL, and this is just one example to why SSL inspection is so important to an organization’s defense.”

Inspecting encrypted traffic is mission-critical for all organizations to protect against these attacks. A multilayered defense-in-depth strategy that fully supports SSL inspection ensures that enterprises are protected from escalating threats hiding in their encrypted traffic. Processing more than 130 billion transactions per day, Zscaler performs SSL inspection at scale, helping organizations securely connect their users in a work-from-anywhere world.

To download the full report, see the 2020 State of Encrypted Attacks.

About ThreatLabZ

ThreatLabZ is the embedded research team at Zscaler. This global team includes security experts, researchers, and network engineers responsible for analyzing and eliminating threats across the Zscaler security cloud and investigating the global threat landscape. The team shares its research and cloud data with the industry at large to help promote a safer internet.

About Zscaler

Zscaler (NASDAQ: ZS) accelerates digital transformation so customers can be more agile, efficient, resilient, and secure. The Zscaler Zero Trust Exchange protects thousands of customers from cyberattacks and data loss by securely connecting users, devices, and applications in any location. Distributed across more than 150 data centers globally, the SASE-based Zero Trust Exchange is the world’s largest in-line cloud security platform.

Zscaler™, Zscaler Internet Access™, and Zscaler Private Access™, ZIA™ and ZPA™ are either (i) registered trademarks or service marks or (ii) trademarks or service marks of Zscaler, Inc. in the United States and/or other countries. Any other trademarks are the properties of their respective owners.

Media Contact:

Natalia Wodecki

press@zscaler.com

Investor Relations Contact:

Bill Choi, CFA

ir@zscaler.com

A photo accompanying this announcement is available at https://www.globenewswire.com/NewsRoom/AttachmentNg/94c5e9d3-ec84-44ff-9170-00108b4649ff

FAQ

What did Zscaler report about encrypted attacks in 2020?

Zscaler reported a 260% increase in encrypted attacks in its 2020 State of Encrypted Attacks report.

Which industries were most affected by encrypted attacks according to Zscaler?

The healthcare industry was the most affected, followed by finance and insurance, and manufacturing.

How many ransomware attacks did Zscaler observe in 2020?

Zscaler observed a 5x increase in ransomware attacks starting March 2020.

What percentage of SSL-based attacks were delivered through trusted cloud providers?

30% of SSL-based attacks were delivered through trusted cloud providers.

What was the phishing attack rate reported by Zscaler?

Zscaler reported nearly 200 million phishing attacks in the first nine months of 2020.

Stock ZS logo
Zscaler, Inc.

NASDAQ:ZS

ZS Rankings

#404 Ranked by Market Cap
N/A Ranked by Dividends

ZS Latest News

Nov 12, 2024
Zscaler Introduces Innovations in Intelligent Segmentation to Extend Zero Trust to Branches, Factories and Clouds
Nov 7, 2024
Zscaler to Host First Quarter Fiscal Year 2025 Earnings Conference Call
Oct 15, 2024
Zscaler and Okta Enhance Enterprise Cybersecurity with New Zero Trust Integrations
Oct 15, 2024
Zscaler Identifies More Than 200 Malicious Apps in the Google Play Store, with Over 8 Million Installs
Oct 9, 2024
Zscaler Zero Trust Exchange™ Extends Cybersecurity Market Leadership by Surpassing Half a Trillion Daily Transactions

ZS Stock Data

30.69B
94.76M
37.87%
52.71%
2.83%
Software - Infrastructure
Services-computer Programming Services
Link
United States of America
SAN JOSE