Summary: Cybercriminals are employing advanced techniques to bypass email security, including embedding malware in image files and utilizing GenAI for malware delivery. HP Wolf’s Q3 2024 Threat Insights Report reveals a significant increase in email threats successfully evading detection, with a notable rise in diverse malware delivery methods. The report highlights the evolution of malware tactics, indicating a concerning trend in the sophistication of cyberattacks.

Threat Actor: Cybercriminals | cybercriminals
Victim: Various organizations | various organizations

Keypoints :

• 11% of email threats bypassed email gateway scanners, indicating a growing sophistication in malware delivery.
• Malware such as VIP Keylogger and 0bj3ctivityStealer is being embedded in image files to evade detection.
• GenAI is being used to assist in malware delivery, with HTML smuggling techniques delivering XWorm malware.
• 52% of malware delivered to endpoints was via email, though this is a decrease from the previous quarter.
• There is a notable increase in the use of diverse file formats, including .lzh files targeting Japanese-speaking users.