【図表】
【ブログ】
◆October 2019’s Most Wanted Malware: the Decline of Cryptominers Continues, as Emotet Botnet Expands Rapidly (Check Point, 2019/11/12)
https://blog.checkpoint.com/2019/11/12/october-2019s-most-wanted-malware-the-decline-of-cryptominers-continues-as-emotet-botnet-expands-rapidly/
【ランキング】
■PC
順位 | マルウェア名 | 10月 | 9月 | 8月 | 7月 | 6月 | 5月 | 4月 | 3月 | 2月 | 1月 | 12月 | 11月 | 10月 | 9月 | 8月 | 7月 | 6月 | 5月 |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
1 | Emotet | 1 | 5 | 7 | 4 | 5 | 4 | 4 | 2 | 3 | 5 | 5 | 7 | - | 10 | - | - | - | - |
2 | XMRig | 2 | 2 | 1 | 1 | 1 | 2 | 2 | 3 | 4 | 2 | 2 | 9 | 7 | 8 | 7 | 7 | 7 | 7 |
3 | Trickbot | 3 | 6 | 4 | 7 | 10 | 8 | 8 | - | - | - | - | - | - | - | - | - | - | - |
4 | Jsecoin | 4 | 1 | 2 | 2 | 2 | 3 | 3 | 5 | 5 | 4 | 3 | 6 | 6 | 5 | 5 | 5 | 6 | 4 |
5 | Dorkbot | 5 | 8 | 3 | 3 | 4 | 7 | 5 | 4 | 6 | 7 | 7 | 5 | 3 | 2 | 2 | 3 | 3 | 8 |
6 | Ramnit | 6 | 9 | 6 | 8 | 6 | 5 | 6 | 7 | 10 | 10 | 8 | - | 8 | 7 | 6 | 10 | 10 | - |
7 | Lokibot | 7 | 10 | 10 | - | - | 6 | 10 | 9 | - | 8 | - | - | - | - | - | - | - | - |
8 | Agentesla | 8 | 3 | 5 | 6 | - | 10 | 7 | - | - | - | - | - | - | - | - | - | - | - |
9 | Formbook | 9 | 4 | 9 | 9 | 9 | - | - | - | - | - | - | - | - | - | - | - | - | - |
10 | Cryptoloot | 10 | 8 | 10 | 3 | 1 | 1 | 1 | 2 | 3 | 4 | 2 | 2 | 3 | 4 | 2 | 2 | 2 | |
- | Nanocore | - | - | - | 5 | 8 | - | - | - | - | - | - | - | - | - | - | - | - | - |
- | Hawkeye | - | - | - | - | 7 | - | - | - | - | - | - | - | - | - | - | - | - | - |
- | Nivdort | - | - | - | - | - | 9 | - | 8 | 7 | 6 | 6 | 10 | - | - | 10 | - | 8 | - |
- | Sality | - | - | - | - | - | - | 9 | - | - | - | - | - | - | - | - | - | - | - |
- | Coinhive | - | - | - | - | - | - | - | 6 | 1 | 1 | 1 | 1 | 1 | 1 | 1 | 1 | 1 | 1 |
- | Mirai | - | - | - | - | - | - | - | 10 | - | - | - | - | - | - | - | - | - | - |
- | Gandcrab | - | - | - | - | - | - | - | - | 8 | 9 | - | - | - | - | - | - | - | - |
- | Smokeloader | - | - | - | - | - | - | - | - | - | - | 9 | - | - | - | - | - | - | - |
- | Authedmine | - | - | - | - | - | - | - | - | 9 | - | 10 | - | - | - | - | - | - | - |
- | Andromeda | - | - | - | - | - | - | - | - | - | - | - | 3 | 5 | 4 | 3 | 4 | 4 | 5 |
- | Roughted | - | - | - | - | - | - | - | - | - | - | - | 4 | 4 | 6 | 8 | 6 | 5 | 3 |
- | Conficker | - | - | - | - | - | - | - | - | - | - | - | 8 | 9 | 9 | 9 | 8 | - | 10 |
- | FlawedAmmyy RAT | - | - | - | - | - | - | - | - | - | - | - | - | 10 | - | - | - | - | - |
- | Fireball | - | - | - | - | - | - | - | - | - | - | - | - | - | - | - | - | - | 6 |
- | Necurs | - | - | - | - | - | - | - | - | - | - | - | - | - | - | - | - | - | 9 |
■モバイル
順位 | マルウェア名 | 10月 | 9月 | 8月 | 7月 | 6月 | 5月 | 4月 |
---|---|---|---|---|---|---|---|---|
1 | Guerrilla | 1 | - | - | - | - | - | - |
2 | Lotoor | 2 | 1 | 1 | 1 | 1 | 1 | 2 |
3 | AndroidBauts | 3 | 2 | 2 | 2 | - | - | - |
- | Hiddad | - | 3 | - | - | - | 2 | 3 |
- | Triada | - | - | 3 | - | 2 | 3 | 1 |
- | Piom | - | - | - | 3 | - | - | - |
- | Ztorg | - | - | - | - | 3 | - | - |
■脆弱性
順位 | 脆弱性 | 10月 | 9月 | 8月 | 7月 | 6月 | 5月 | 4月 |
---|---|---|---|---|---|---|---|---|
1 | SQL Injection (several techniques) | 1 | 4 | 1 | 1 | 1 | 1 | - |
2 | OpenSSL TLS DTLS Heartbeat Information Disclosure | 2 | 5 | 2 | 2 | 2 | 3 | 1 |
3 | MVPower DVR Remote Code Execution | 3 | 1 | 3 | 3 | - | - | - |
4 | PHP DIESCAN information disclosure | 4 | 8 | 7 | 6 | 5 | 7 | - |
5 | Web Server Exposed Git Repository Information Disclosure | 5 | 3 | 8 | 4 | 4 | 2 | - |
6 | WordPress portable-phpMyAdmin Plugin Authentication Bypass | 6 | 7 | 5 | 7 | 6 | 10 | - |
7 | Joomla Object Injection Remote Command Execution) | 7 | 9 | 6 | 5 | 3 | 4 | - |
8 | Command Injection Over HTTP | 8 | 6 | 4 | - | 7 | - | - |
9 | OpenSSL Padding Oracle Information Disclosure (CVE-2016-2107) | 9 | - | - | - | - | - | - |
10 | Apache Struts2 Content-Type Remote Code Execution (CVE-2017-5638) | 10 | - | - | - | 8 | 6 | 3 |
- | D-Link DSL-2750B Remote Command Execution | - | 10 | 10 | 9 | 9 | 8 | - |
- | Linux System Files Information Disclosure | - | 2 | - | - | - | - | - |
- | Hikvision IP Cameras Information Disclosure | - | - | - | - | - | - | - |
- | OpenDreamBox WebAdmin Plugin Remote Code Execution | - | - | - | 8 | - | - | - |
- | Microsoft IIS WebDAV ScStoragePathFromUrl Buffer Overflow (CVE-2017-7269) | - | - | - | - | 10 | 5 | 2 |