1. Home
  2. news
  3. popular apps insurance attract malware

Popular Apps in Insurance that Attract Malware

October 16, 2024

GitHub, OneDrive, and SharePoint are the top three most popular apps used in the insurance industry that are frequently infiltrated to deliver malware

Malware

Global cyber security leader Netskope has released a report identifying GitHub, OneDrive, and SharePoint as the top three most popular apps used in the insurance industry that are frequently infiltrated to deliver malware. 

The Netskope Threat Labs Report focuses on a different industry each month, and for October, it reviewed the insurance industry. The report notes that Microsoft Teams, OneDrive, and SharePoint are common in most industries, but Microsoft apps dominate the top six used in Insurance. 

Malware can be delivered through many different channels. Approximately half of all global HTTP/HTTPS malware downloads originate from popular cloud apps, and the other half originate from different locations on the web. Both big and small insurance organisations must have security controls to block malware downloads and to ensure policies are in place to protect sensitive data. 

The Netskope Threat Labs Report lists the top malware and ransomware families it detected targeting users in Insurance over the last 12 months. These included: 

  • Backdoor.Zusy (a.k.a. TinyBanker) is a banking Trojan based on Zeus's source code, aiming to steal personal information via code injection into websites. 
  • Downloader.BanLoad is a Java-based downloader widely used to deliver a variety of malware payloads, especially banking Trojans. 
  • Infostealer.AgentTesla is a .NET-based RAT with many capabilities, such as stealing browser passwords, capturing keystrokes, and stealing clipboards. 
  • Phishing.PhishingX is a malicious PDF file used in a phishing campaign to redirect victims to a phishing page. 

Prevention Is Key 

With cyber security threats becoming more frequent and sophisticated, regular policy reviews, maintaining high staff awareness, and keeping your protective software up-to-date with providers like Netskope are critical. 

The Netskope Threat Labs Report outlines several initiatives to prevent cyber security breaches, including policies that block both downloads from apps and uploads to apps. Netskope also offers a range of products that enhance protection, such as Advanced Threat Protection, Intrusion Prevention System, and Remote Browser Isolation. 

View the Netskope Threat Labs Report here.