Spammers Cash In on Blockchain Euphoria in Q3 2017

Woburn, MA – November 3, 2017 –Kaspersky Lab today announced its “Spam and Phishing in Q3 2017” report, which found that cybercriminals are capitalizing on the popularity of blockchain technology by circulating cryptocurrency-themed fraud schemes.

While cryptocurrency holders search for new investment opportunities and bitcoin enthusiasts look to learn more about the benefits of going cashless, malicious actors are discovering new ways to exploit the cryptocurrency trend. During the past three months, Kaspersky Lab researchers have observed cybercriminals using several successful blockchain-themed tricks to fool consumers and steal their money, such as targeting victims through web mining.

Fraud schemes based on cryptocurrency trading have also been prevalent over the last quarter. In one campaign observed by researchers, consumers receive an email invitation to install special software for trading in the cryptocurrency market. Upon clicking on the links in the message, people are redirected to websites promoting investment options, including binary options trading. Cybercriminals hope that the consumer will be enticed to invest money in these fraudulent websites.

More primitive, but no less effective, tactics used to exploit victims include the distribution of emails offering to transfer money to a specific crypto wallet, promising that the user will receive their money back with interest. Instead, when the consumer transfers money to the unknown wallet, the cybercriminal cashes in.

Another fraud scheme observed by Kaspersky Lab researchers during the last quarter aimed to exploit a lack of understanding about blockchain technology. Cybercriminals advertised educational workshops via email that would help consumers enhance their knowledge of cryptocurrency and learn about investment opportunities. People were duped into paying a high price tag for what they believed were legitimate services. Unfortunately, the money ended up in the cybercriminals’ wallets, and consumers never received the promised advice.

“While in the second quarter of the year we observed the WannaCry spam and phishing attacks, in the past three months we have witnessed criminals actively exploiting the popularity and interest around cryptocurrency,” said Darya Gudkova, spam analyst expert at Kaspersky Lab. “This once again shows that the most consistent way cybercriminals are targeting victims is by utilizing current trends and cashing in on an emerging market that consumers are still coming to grips with and keen to explore. There is no doubt that attacks in this form will continue, so it is extremely important for everyone to pay careful attention, be vigilant and keep up to date when it comes to global phenomenon.”

Along with the growth of blockchain scams, the average proportion of spam in email traffic increased during the last quarter, to just over 58 percent. Also, peak spam activity was observed in September.

The proportion of spam in email traffic, Q2 2017 vs Q3 2017

Other important trends and statistics from the “Spam and Phishing in Q3 2017” report include the following:

• China became the most popular source of spam, overtaking the Vietnam and the U.S.. Other countries in the top 10 include India, Germany, Brazil, France, Poland and the Islamic Republic of Iran.
• The country most targeted by malicious mail campaigns was Germany. The top target of the previous period, China, came second, followed by Russia, Japan and Italy.
• Researchers detected an increase in phishing attacks by around 13 million – the Kaspersky Lab Anti-Phishing system was triggered 59,569,508 times on the computers of Kaspersky Lab users in Q3.
• The largest percentage of users affected by phishing was in Brazil (19.95%), the same as the previous quarter. Overall, around 9 percent of Kaspersky Lab users worldwide were attacked by phishing in the last three months.
• The main targets of phishing attacks remained the same since the beginning of the year. They are primarily in the financial sector and include banks, payments services and online stores.

Learn more about spam and phishing in Q3 2017 on Securelist.com.

Kaspersky Lab recommends home users install a reliable secure solution to detect and block spam and phishing attacks, such as Kaspersky Total Security.

Businesses are recommended to use security solutions with dedicated functionality aimed at detecting and blocking phishing, malicious attachments and spam. Small businesses can protect themselves with Kaspersky Small Office Security and Kaspersky Endpoint Security Cloud, while larger companies can benefit from real-time cloud-assisted anti-spam scanning of all messages, with the Kaspersky Security for Mail Server application inside Kaspersky Total Security for Business.

About Kaspersky Lab
Kaspersky Lab is a global cybersecurity company celebrating its 20 year anniversary in 2017. Kaspersky Lab’s deep threat intelligence and security expertise is constantly transforming into next generation security solutions and services to protect businesses, critical infrastructure, governments and consumers around the globe. The company’s comprehensive security portfolio includes leading endpoint protection and a number of specialized security solutions and services to fight sophisticated and evolving digital threats. Over 400 million users are protected by Kaspersky Lab technologies and we help 270,000 corporate clients protect what matters most to them. Learn more at www.kaspersky.com.

For the latest in-depth information on security threat issues and trends, please visit:

Securelist | Information about Viruses, Hackers and Spam
Follow @Securelist on Twitter

Threatpost | The First Stop for Security News
Follow @Threatpost on Twitter

Media Contact
Sarah Kitsos 
781.503.2615
sarah.kitsos@kaspersky.com