Spamhaus and abuse.ch have teamed up this month to release their monthly malware digest, helping organisations and users protect themselves from online threats and malicious software. The final report for 2022 is now available.
In the report, Spamhaus examined data collected by abuse.ch’s open platforms, which collect, track and share resources related to malware campaigns such as URLs of malware distribution sites, malware samples and indicators of compromise.
The findings revealed that 52,523 malware sites were reported to URLhaus in December and 54,709 active malware distribution sites were located during this time period. The top three contributors responsible for submitting reports were @Cryptolaemus1 with 20,477 submissions, @lrz_urlhaus with 16,560 submissions and @geenensp with 10,742 submissions respectively.
Most of the active sites detected were hosted in the United States (20%), China (17%) and India (14%). Apart from URLhaus’s data collection efforts, ThreatFox, Malware Bazaar and YARAify also function as open platforms contributing to abuse.ch’s research efforts. ThreatFox observed a 29.2% increase in abuse reports sent to web hosting providers and networks owners while YARAify conducted 2.4 million file scans using 14 thousand YARA rules for hunting down malicious activities. This monthly malware report is a great tool for understanding the latest trends in cyber-security and taking preventive measures against future attacks.