MALWARE

Email is by far the top attack vector for malware delivery

WHAT IS MALWARE?

Malware is somewhat of a catch-all term to refer to any software designed to cause damage to a single computer, server, or computer network. Although Malware has been around for a long time, the rise of Malware as a Service (Maas), saw nearly 10 billion recorded attacks in 2019. The most prevalent of these include ransomware such as Maze or Cryptolocker, worms like Emotet, and Trojans like Trickbot.

green malware skull

5.4B Malware Attacks in 2021

In 2021, there were 5.4 billion malware attacks detected, down from a high of 10.5 billion attacks detected in 2018.

(source: Statista)

94% in a green circle

94% Delivered By Email

94 percent of all malware is delivered by email, according to Verizon’s 2021 data breach investgiations report.

(source: Verizon)

Emotet most prevalent in 2020

The most prevalent malware threats were from the family Emotet, representing 19 percent of all reported attacks.

(source: Statista)

WHAT DOES MALWARE DELIVERED
BY EMAIL LOOK LIKE?

Email is the top delivery vector for malware because of how many potential victims an attacker can reach with minimal effort. Many organizations lack adequate malware detection and rely solely on static, signature based scanning which leaves them vulnerable against new, never-before-seen variants.

Email with a link to malicious download masquerading as an Amazon delivery notification

Brand Impersonation

The attacker has recently registered the domain ‘deliverytracker.co’ and has copied Amazon’s dispatch confirmation email template.

Contains Legitimate Links

This email contains legitimate links to Amazon which is a common technique used to appear authentic. It contains only one link to malware files.

Malicious Payload

When clicked on, the link will download executable malware files that will infect the recipient’s device and potentially their network.

HOW DOES MESH PROTECT
AGAINST MALWARE ATTACKS?

Mesh applies over 250 unique filters to every single email it processes, protecting against the full spectrum of email attacks. Combining machine learning, predictive threat intelligence and advanced content analysis, Mesh identifies indicators of compromise, fraud, impersonation, phishing, malicious content, spam, and unsolicited marketing emails, keeping organizations and their people safe.

URL Protect

All links in the email are subjected to scanning against real-time threat feeds for known and unknown malicious sites as well as fake login pages and phishing sites. Links to unknown or suspicious objects are sandboxed.

Attachment Sandboxing

Unknown and potentially malicious attachments are detonated in a virtual environment to determine their behavior, protecting against never-before-seen, zero-hour threats like polymorphic malware.

Antimalware Engines

Mesh uses a combination of commercial, and proprietary engines to perform signature and heuristic-based scanning in order to detect known and unknown, types of malware such as viruses, ransomware and trojans.

Its ability to detect emails specifically targeting high-risk individuals is incredibly reassuring

Mesh has significantly reduced the amount of email-related tickets we receive. The ability to manage everything centrally from partner level makes our job so much easier - we can make changes for all clients in one go. Onboarding was quick and painless, both our engineers and end-users took to it straight away.”

Get the full case-study ⟶

Jason Gilmer
Network Admin at Reading Bakery Systems

reading bakery systems logo

Ready to get started?

Make your customers safer and
your MSP more efficient.

MSP Success Stories

Discover how your MSP peers have made their MSPs more efficient and profitable, while delivering better email security to their customers.

View Success Stories →

Mesh is not for everyone

We’re developing the only email security platform built exclusively for MSPs, but nobody is perfect and Mesh is not for every team.

Learn Why →