惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

月光博客
月光博客
Cyberwarzone
Cyberwarzone
L
LINUX DO - 最新话题
N
News and Events Feed by Topic
T
Troy Hunt's Blog
Help Net Security
Help Net Security
S
Security @ Cisco Blogs
Google DeepMind News
Google DeepMind News
Security Archives - TechRepublic
Security Archives - TechRepublic
M
MIT News - Artificial intelligence
G
Google Developers Blog
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
V2EX - 技术
V2EX - 技术
Y
Y Combinator Blog
D
Darknet – Hacking Tools, Hacker News & Cyber Security
大猫的无限游戏
大猫的无限游戏
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
Microsoft Security Blog
Microsoft Security Blog
Cisco Talos Blog
Cisco Talos Blog
T
Threatpost
Recent Commits to openclaw:main
Recent Commits to openclaw:main
S
SegmentFault 最新的问题
I
InfoQ
H
Hacker News: Front Page
D
Docker
Scott Helme
Scott Helme
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
Blog — PlanetScale
Blog — PlanetScale
人人都是产品经理
人人都是产品经理
博客园 - 叶小钗
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
N
Netflix TechBlog - Medium
AWS News Blog
AWS News Blog
Know Your Adversary
Know Your Adversary
博客园 - 【当耐特】
T
Tor Project blog
U
Unit 42
H
Heimdal Security Blog
Microsoft Azure Blog
Microsoft Azure Blog
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
P
Privacy & Cybersecurity Law Blog
PCI Perspectives
PCI Perspectives
美团技术团队
O
OpenAI News
T
Tailwind CSS Blog
H
Hackread – Cybersecurity News, Data Breaches, AI and More
B
Blog
GbyAI
GbyAI
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
MyScale Blog
MyScale Blog

Press Releases

Aston Martin F1 & Zscaler: Speed Meets Security Zscaler Debuts ZAgent and Extends SASE Protection Zscaler report: AI brings lethal precision to cybercrime Zscaler Unites with Tech Leaders to Secure Enterprise AI Zscaler Unveils New Product Innovations to Secure Agentic AI Zscaler Announces Intent to Acquire Symmetry Systems, Inc. Zscaler Partners with GSIs to Launch Project AI-Guardian Zscaler and Alstom mark a decade of Zero Trust transformation to secure a cloud-first, mobile workforce and modernize operations | Zscaler Zscaler Recognized as Google Cloud Partner of the Year - Security Zscaler ZIA Achieves DoW Impact Level 5 Authorization Zscaler Expands Global Sovereignty on Zero Trust Exchange Zscaler & Singtel Singapore Bring Zero Trust Security SEA Zscaler, Together With Bharti Airtel, Announce Launch of AI & Cyber Threat Research Center to Advance Cyber Resilience and Trusted AI Adoption | Zscaler Zscaler Acquires SquareX to Advance Zero Trust Browser Security for the AI Era | Zscaler Zscaler Unveils New Innovations to Secure Enterprise AI Adoption Zscaler 2026 AI Security Report: Trends and Security Issues Zscaler Expands in Malaysia With New Data Center in Kuala Lumpur Dr. Swamy Kocherlakota to Lead Agentic AI Security Engineering Zscaler Appoints Sunil Frida as Chief Marketing Officer Zscaler recognized as AWS Marketplace Partner of the Year Zscaler and Microsoft Partner in Entra Agent ID Partner Ecosystem Zscaler Reveals 67% Jump in Android Malware & 40% of IoT Attacks Zscaler Acquires Innovative AI Security Pioneer SPLX Zscaler Announces New Innovations for Improved Digital Experience Zscaler announces advancements for U.S. Federal Civilian and DoD Zscaler Completes 2024 IRAP Assessment Zscaler and CrowdStrike Expand Partnership for Better AI Security Zscaler Completes Acquisition of Red Canary Ransomware Surges as Attempts Spike 146% IT Resilience Undermined by Lack of Support for Team Wellbeing Zscaler Extends Zero Trust to Cellular Communications for IoT/OT Zero Trust Security Reduces Cyber Insurance Claims Zscaler Achieves ISV Competencies In Three Categories Zscaler Unveils Latest AI Innovations on stage at Zenith Live Zscaler Launches New Solutions at Zenith Live Las Vegas Kevin Rubin Joins Zscaler as Chief Financial Officer Zscaler signed a definitive agreement to acquire Red Canary Zscaler, A Leader Once Again In The 2025 Gartner MQ for SSE Zscaler Leads by Example and Achieves DoD’s CMMC Level 2 Certific Raj Judge to Join Zscaler and Board of Directors Zscaler Leads by Example and Achieves DoW’s CMMC Level 2 Certific Zscaler Listed in AWS “ICMP” for the US Federal Government Zscaler ThreatLabz Uncovers Surge in AI-Driven Cyberattacks ThreatLabz Announces Findings From Its 2025 VPN Risk Report Zscaler Deployed Across T-Mobile Operations Report Finds an Over 3,000% Surge in Enterprise Use of AI/ML Tool Zscaler Introduces Zscaler Asset Exposure Management Survey Reveals Urgent Need to Prioritize Zero Trust Adoption Zscaler Offers Integrated Zero Trust Solution for RISE with SAP Nokia Turns to Zscaler to Modernize Security Architecture Zscaler Extend Zero Trust to Branches, Factories and Clouds Zscaler Expands Business Continuity Solution for Cloud & Endpoint Zscaler and Okta announced four new cybersecurity integrations Zscaler Identifies Malicious Apps with Over 8M Installs Zscaler Surpasses Half a Trillion Daily Transactions TOYOTA GAZOO Selects Zscaler to Protect Users Globally Zscaler Appoints Security Industry Veteran Adam Geller as CPO Zscaler and CrowdStrike announce new cyber security integrations Zscaler Opens New Point-of-Presence in Western Australia
Zscaler Finds Over 87% of Cyberthreats Hide in Encrypted Traffic
2024-12-05 · via Press Releases

Key Findings:

  • Malware, phishing and cryptominers account for nearly 90% of all encrypted threats observed in ThreatLabz analysis
  • Manufacturing was the target of 42% of encrypted attacks, making it the most- targeted industry 
  • The United States and India are the top targets of encrypted attacks

Zscaler, Inc. (NASDAQ: ZS), the leader in cloud security, today published its Zscaler ThreatLabz 2024 Encrypted Attacks Report, which explores the latest threats blocked by the Zscaler security cloud and provides critical insights into how encryption has become a conduit for more sophisticated threats, further compounded by the rise of artificial intelligence (AI). ThreatLabz found that over 87% of all threats were delivered over encrypted channels between October 2023 and September 2024—a 10% increase year-over-year. The report offers strategies and best practices to help organizations tackle these covert threats. 

"The rise in encrypted attacks is a real concern as a significant share of threats are now delivered over HTTPS," said Deepen Desai, Chief Security Officer, Zscaler. "With threat actors focused on exploiting encrypted channels to deliver advanced threats and exfiltrate data, organizations must implement a zero trust architecture with TLS/SSL inspection at scale. This approach helps to ensure that threats are detected and blocked effectively, while safeguarding data without compromising performance."

Encrypted malware continues to dominate 
Malware accounted for 86% of encrypted attacks, totaling 27.8 billion hits—a 19% year-over-year increase. Encrypted malware includes malicious web content, malware payloads, macro-based malware, etc. This growing prevalence of malware reflects a strategic shift by attackers adapting tactics to thrive within encrypted traffic, using encryption to conceal malicious payloads and content.   

According to ThreatLabz researchers, the most active malware families were:

  • AsyncRAT 
  • Choziosi Loader/ChromeLoader 
  • AMOS/Atomic Stealer 
  • Ducktail
  • Agent Tesla
  • Koi Loader

The report also details notable year-over-year increases in web-based attacks, including cryptomining/cryptojacking (123%), cross-site scripting (110%) and phishing (34%), among other encrypted threats—surges that could be potentially fueled by the growing use of generative AI technologies by threat actors.

Most targeted industry verticals
Manufacturing was the most-targeted industry, accounting for  42% of encrypted attacks—nearly three times more than the second-most targeted industry, technology and communications. Attacks on the manufacturing industry grew 44% year-over-year, likely driven by rapid Industry 4.0 advancements and the extensive use of interconnected systems, which have expanded the attack surface and heightened manufacturers’ vulnerability to cyber threats.

The top five most targeted industries were:

  • Manufacturing
  • Technology and communications 
  • Services
  • Education
  • Retail and wholesale

Countries that experience the most encrypted attacks
ThreatLabz found that the United States, India and France are the most frequently targeted nations by encrypted attacks. The U.S. and India are consistently the top two most frequently targeted, highlighting their significance as high-value targets for cybercriminals. The top five most targeted countries by encrypted attacks were:

  • United States - 11B
  • India - 5.4B
  • France - 854M
  • United Kingdom - 741M
  • Australia - 672M

Stopping encrypted attacks with zero trust
Understanding how zero trust disrupts encrypted threats requires looking at a typical attack sequence. Advanced attacks often unfold in four stages:

  1. First, attackers conduct reconnaissance to find a way into the targeted network.
  2. Next, they breach the network, often via exploits, brute-force attacks or stolen credentials.
  3. Once inside, they move laterally, escalate privileges and establish persistence.
  4. Finally, they carry out their objectives, typically conducting data exfiltration to extract valuable information that can be leveraged for further extortion or attacks. 

The Zscaler Zero Trust Exchange™ platform provides security controls at each stage to mitigate risk and stop encrypted threats.

A key component of the Zscaler platform’s approach is its full TLS/SSL inspection capabilities, based on an advanced proxy architecture. Zscaler advises inspecting 100% of traffic to protect users and organizations from threats concealed within encrypted channels.

Organizations can bolster their ability to protect their devices, apps and data from encrypted attacks by following these recommendations:

  • Understand that any internet-facing service can be found and attacked or abused
  • Inspect incoming encrypted traffic to detect and block threats
  • Use a zero trust architecture to secure all connectivity holistically between users and applications, between devices like IoT and OT systems, between all locations and branch offices, between cloud workloads and more.
  • Implement microsegmentation to reduce access, even for authenticated users. 
  • Leverage an AI-driven cloud sandbox to isolate and quarantine unknown attacks and stop patient-zero malware before it touches users.
  • Reduce the number of entry points into an environment. 
  • Inspect outgoing northbound traffic along with incoming southbound traffic to disrupt C2 communications and protect sensitive data.

The ThreatLabz 2024 Encrypted Attacks Report provides additional insights and best practices to help organizations effectively prevent encrypted attacks. Download your copy here today.

Research Methodology
Analysis of 32.1 billion blocked threats from October 2023 to September 2024 in the Zscaler cloud shows that all blocked threats came via encrypted channels. 

About ThreatLabz
ThreatLabz is the security research arm of Zscaler. This world-class team is responsible for hunting new threats and ensuring that the thousands of organizations using the global Zscaler platform are always protected. In addition to malware research and behavioral analysis, team 
members are involved in the research and development of new prototype modules for advanced threat protection on the Zscaler platform, and regularly conduct internal security audits to ensure that Zscaler products and infrastructure meet security compliance standards. ThreatLabz regularly publishes in-depth analyses of new and emerging threats on its portal, research.zscaler.com.