Close Menu
TechCentralTechCentral

    Subscribe to the newsletter

    Get the best South African technology news and analysis delivered to your e-mail inbox every morning.

    Facebook X (Twitter) YouTube LinkedIn
    WhatsApp Facebook X (Twitter) LinkedIn YouTube
    TechCentralTechCentral
    • News

      World Bank set to back South Africa’s big energy grid roll-out

      20 June 2025

      The algorithm will sing now: why musicians should be worried about AI

      20 June 2025

      Sita hits back at critics, promises faster, automated procurement

      20 June 2025

      The transatlantic race to create the first television

      20 June 2025

      Listed: All the MVNOs in South Africa – 2025 edition

      19 June 2025
    • World

      Watch | Starship rocket explodes in setback to Musk’s Mars mission

      19 June 2025

      Trump Mobile dials into politics, profit and patriarchy

      17 June 2025

      Samsung plots health data hub to link users and doctors in real time

      17 June 2025

      Beijing’s chip champions blacklisted by Taiwan

      16 June 2025

      China is behind in AI chips – but for how much longer?

      13 June 2025
    • In-depth

      Meta bets $72-billion on AI – and investors love it

      17 June 2025

      MultiChoice may unbundle SuperSport from DStv

      12 June 2025

      Grok promised bias-free chat. Then came the edits

      2 June 2025

      Digital fortress: We go inside JB5, Teraco’s giant new AI-ready data centre

      30 May 2025

      Sam Altman and Jony Ive’s big bet to out-Apple Apple

      22 May 2025
    • TCS

      TCS+ | AfriGIS’s Helen Hulett on how tech can help resolve South Africa’s water crisis

      18 June 2025

      TechCentral Nexus S0E2: South Africa’s digital battlefield

      16 June 2025

      TechCentral Nexus S0E1: Starlink, BEE and a new leader at Vodacom

      8 June 2025

      TCS+ | The future of mobile money, with MTN’s Kagiso Mothibi

      6 June 2025

      TCS+ | AI is more than hype: Workday execs unpack real human impact

      4 June 2025
    • Opinion

      South Africa pioneered drone laws a decade ago – now it must catch up

      17 June 2025

      AI and the future of ICT distribution

      16 June 2025

      Singapore soared – why can’t we? Lessons South Africa refuses to learn

      13 June 2025

      Beyond the box: why IT distribution depends on real partnerships

      2 June 2025

      South Africa’s next crisis? Being offline in an AI-driven world

      2 June 2025
    • Company Hubs
      • Africa Data Centres
      • AfriGIS
      • Altron Digital Business
      • Altron Document Solutions
      • Altron Group
      • Arctic Wolf
      • AvertITD
      • Braintree
      • CallMiner
      • CYBER1 Solutions
      • Digicloud Africa
      • Digimune
      • Domains.co.za
      • ESET
      • Euphoria Telecom
      • Incredible Business
      • iONLINE
      • Iris Network Systems
      • LSD Open
      • NEC XON
      • Network Platforms
      • Next DLP
      • Ovations
      • Paracon
      • Paratus
      • Q-KON
      • SevenC
      • SkyWire
      • Solid8 Technologies
      • Telit Cinterion
      • Tenable
      • Vertiv
      • Videri Digital
      • Wipro
      • Workday
    • Sections
      • AI and machine learning
      • Banking
      • Broadcasting and Media
      • Cloud services
      • Contact centres and CX
      • Cryptocurrencies
      • Education and skills
      • Electronics and hardware
      • Energy and sustainability
      • Enterprise software
      • Fintech
      • Information security
      • Internet and connectivity
      • Internet of Things
      • Investment
      • IT services
      • Lifestyle
      • Motoring
      • Public sector
      • Retail and e-commerce
      • Science
      • SMEs and start-ups
      • Social media
      • Talent and leadership
      • Telecoms
    • Events
    • Advertise
    TechCentralTechCentral
    Home » Company News » ESET: Ransomware, password guessing top security threats

    ESET: Ransomware, password guessing top security threats

    By ESET23 February 2022
    Twitter LinkedIn Facebook WhatsApp Email Telegram Copy Link
    News Alerts
    WhatsApp
    ESET Southern Africa’s Steve Flynn

    ESET Research has released its T3 Threat Report for the fourth quarter of 2021, summarising the key statistics from ESET detection systems between September and December 2021.

    • Ransomware surpassed the worst expectations in 2021, with attacks against critical infrastructure, outrageous ransom demands and over US$5-billion worth of potential bitcoin transactions in the first half of the year alone.
    • RDP (Remote Desktop Protocol) attack numbers from the last weeks of T3 2021 broke all previous records, amounting to a staggering yearly growth of 897%.
    • Android banking malware detections rose by 428% in 2021 compared to 2020.
    • ProxyLogon vulnerability was the second most frequent external attack vector in ESET’s 2021 statistics, right after password-guessing attacks.
    • Attacks exploiting the Log4Shell vulnerability were the fifth most common external intrusion vector in 2021.

    The ESET research reveals a rising scourge of e-mail threats towards the end of 2021 and a marked increase in threats exploiting customer excitement around cryptocurrency’s bull run at the end of the year. But it was the nearly 900% increase year on year of Remote Desktop Protocol (RDP) attacks, and a critical flaw in the Log4j utility, that was a great cause for concern in the latter part of the year.

    IT teams everywhere were sent scrambling, again, to locate and patch the Log4j flaw in their systems. “This vulnerability, scoring a 10 on the Common Vulnerability Scoring System, put countless servers at risk of a complete takeover – so it came as no surprise that cybercriminals instantly started exploiting it. Despite only being known for the last three weeks of the year, Log4j attacks were the fifth most common external intrusion vector in 2021 in our statistics, showing just how quickly threat actors are at taking advantage of newly emerging critical vulnerabilities,” explains Roman Kováč, chief research officer at ESET’s Slovakia-based research lab.

    According to ESET telemetry, the end of the year was also turbulent for RDP attacks, which escalated throughout 2020 and 2021. RDP attacks exploit the fact that many work from home environments leave enterprise networks vulnerable if organisations fail to secure end-points due to the rapid adoption of work from home working policies.

    Numbers from the final weeks of 2021 broke all previous records, amounting to a staggering yearly growth of 897% in total attack attempts blocked.

    Ransomware threats continue unabated

    But it has been a monumental rise in ransomware attacks that continues to be one of the most significant concerns even into 2022. “Since 2020, ransomware threats have been more aggressive than ever,” says Steve Flynn, sales and marketing director for ESET Southern Africa.

    “Ransomware surpassed the worst expectations in 2021 with attacks on critical infrastructure, even here in South Africa, crippling many institutions both public and private,” he says.

    Ransom demands and over $5-billion worth of bitcoin transactions tied to potential ransomware payments were identified in the first half of 2021 alone. As the bitcoin exchange rate reached its highest point in November, ESET experts observed an influx of cryptocurrency-targeting threats, further boosted by the popularity of non-fungible tokens (NFTs).

    Android banking malware shows an alarming increase

    In the world of mobile, ESET noted an alarming upsurge in Android banking malware detections, which rose by 428% in 2021 compared to 2020. Banking malware threats are almost as prevalent as adware, a common nuisance on the Android platform.

    Phishing remains a problem

    E-mail threats, the door to myriad attacks, saw their yearly detection numbers more than double. This trend was mainly driven by a rise in phishing e-mails, which more than compensated for the rapid decline in Emotet’s signature malicious macros in e-mail attachments. Emotet, an infamous trojan inactive for most of the year, as illustrated in the report, came back in the last quarter of the year.

    No platform is immune to threats.

    The ESET T3 2021 Threat Report also reviews the most important research findings, with ESET Research uncovering: FontOnLake, a new malware family targeting Linux; a previously undocumented real-world UEFI boot-kit named ESPecter; FamousSparrow, a cyberespionage group targeting hotels, governments, and private companies worldwide; and many others. The full report contains an analysis from ESET researchers on all 17 malicious frameworks known to have been used to attack air-gapped networks.

    Rounding out the report is news that ProxyLogon vulnerability was the second most frequent external attack vector in ESET’s 2021 statistics, right after password-guessing attacks.

    Microsoft Exchange servers fell under siege again in August 2021, with ProxyLogon’s “younger sibling”, named ProxyShell, which has been exploited worldwide by several threat groups.

    “The move online has made everyone’s life much easier during the pandemic. Organisations and their people have been quick to adapt, but this brought levels of threats we have never seen before. Cybercriminals are more determined than ever to exploit any vulnerability, and users are going to have to take cybersecurity seriously if we are to get on top of these threats in any meaningful way in the future,” concludes Flynn.

    For more information, check out ESET Threat Report T3 2021 on WeLiveSecurity or follow ESET’s social media pages on LinkedIn, Facebook and Instagram.

    About ESET
    For more than 30 years, ESET has been developing industry-leading IT security software and services to protect businesses, critical infrastructure and consumers worldwide from increasingly sophisticated digital threats.

    From endpoint and mobile security to endpoint detection and response, encryption and multifactor authentication, ESET’s high-performing, easy-to-use solutions unobtrusively protect and monitor 24/7, updating defences in real time to keep users safe and businesses running without interruption. Evolving threats require an evolving IT security company that enables the safe use of technology. This is backed by ESET’s R&D centres worldwide, working in support of our shared future. For more information, visit www.eset.com/za or follow us on LinkedIn, Facebook and Instagram.

    • This promoted content was paid for by the party concerned


    ESET Steve Flynn
    Subscribe to TechCentral Subscribe to TechCentral
    Share. Facebook Twitter LinkedIn WhatsApp Telegram Email Copy Link
    Previous ArticleInvestec seeks to double its South African client base
    Next Article Closing the gap between vulnerability discovery and remediation

    Related Posts

    TCS+ | From gen AI to deepfakes – the latest infosec threats

    1 October 2024

    TCS+ | ESET’s Adrian Stanford: how AI will transform cybersecurity

    10 June 2024

    AI’s double-edged sword requires a human security approach

    4 June 2024
    Add A Comment

    Comments are closed.

    Company News

    Making IT happen: how Trade Link gears up to enable SA retail strategies

    20 June 2025

    Why parents choose CambriLearn for online education

    19 June 2025

    Disrupt first, ask questions later – the uncomfortable truth about incident response

    18 June 2025
    Opinion

    South Africa pioneered drone laws a decade ago – now it must catch up

    17 June 2025

    AI and the future of ICT distribution

    16 June 2025

    Singapore soared – why can’t we? Lessons South Africa refuses to learn

    13 June 2025

    Subscribe to Updates

    Get the best South African technology news and analysis delivered to your e-mail inbox every morning.

    © 2009 - 2025 NewsCentral Media

    Type above and press Enter to search. Press Esc to cancel.