The Daily Swig Web security digest

Healthcare ops ‘most impacted’ by cybersecurity incidents in Q2

James Walker | 25 September 2017 at 14:00

Latest McAfee Labs report reinforces the need for stronger corporate security policies that work to ensure the safe handling of information.


In the second quarter of 2017, the US healthcare sector reported the greatest number of cybersecurity incidents, surpassing those of the public sector for the first time in six consecutive quarters, new data from McAfee Labs suggests.

According to the OpSec research lab, healthcare accounted for 26% of publicly disclosed security incidents in the July-August period, overtaking the number of reported breaches in the public sector.

While McAfee Labs said overall healthcare data leaks were “most likely” the result of accidental disclosures and human error, it said cyberattacks on the sector continue to increase.

“The trend began in the first quarter of 2016 when numerous hospitals around the world sustained ransomware attacks,” the group stated. “The attacks paralyzed several departments and, in some cases, the hospitals had to transfer patients and postpone surgeries.”

The latest McAfee Labs Threats Report also underlined the growing challenges faced by social media, with the sector witnessing a 67% increase in malware activity.

The second quarter of 2017 saw Facebook emerge as a notable attack vector, with the Faceliker trojan accounting for as much as 8.9% of the quarter’s 52 million newly detected malware samples.

Facelinker infects a user’s browser when they visit malicious or compromised websites. It then hijacks the user’s Facebook ‘likes’ and promotes the content without their knowledge or permission.

Doing so at scale can earn money for the malicious parties behind the trojan, as the hijacked clicks can make a news article, video, website, or advertisement appear more popular or trusted than it truly is.

“Faceliker leverages and manipulates the social media and app based communications we increasingly use today,” said Vincent Weafer, vice president of McAfee Labs. “As long as there is profit in such efforts, we should expect to see more such schemes in the future.”


Q2 2017 Threat Activity

  • McAfee Labs counted 311 publicly disclosed security incidents during the period – an increase of 3% over Q1
  • The health, public, and education sectors comprised more than 50% of total incidents worldwide in 2016-2017
  • New malware samples jumped 67% in Q2 to 52 million, a 67%, driven by a significant increase in malware installers and the Faceliker trojan
  • New ransomware samples again increased sharply in Q2, by 54%
  • Global infections of mobile devices rose by 8% in Q2, with Asia again leading the regions with 18%