Endpoint Detection and Antivirus Solutions miss 66% of malware infections.

Nearly one in two corporate users were already the victim of a malware infection in 2024.

In the year prior to 2024, malware was the cause of 61% of all breaches.

SpyCloud's research shows that 66% of malware infections occur on devices with endpoint security solutions installed.

In the year prior to 2024, malware was the cause of 61% of all breaches.

About one in every two corporate users was already the victim of an infostealer infection on a personal or corporate system in 2024.

17.3 billion cookies were siphoned by malware.

On average, a single malware infection could expose access to 10 to 25 third-party business applications.

There was an average of 44 exposed credentials per malware infection.

24% of SMBs were targeted by malware in the past 12 months.

In Q4 2024, HP threat researchers saw a growth in social engineering campaigns that rely on fake CAPTCHA challenges to infect users with malware

Rooted devices are more than 3.5 times more likely to be targeted by mobile malware.

Email was the primary method for delivering malware to endpoints, accounting for 52% of threats in Q3 2024. This represents a 9% decrease compared to Q2 2024.

Executables and scripts were the most popular type of malware delivery file, making up 40% of threats in Q3 2024. This is a 5% point increase compared to Q2 2024.

Threats delivered by other vectors (such as removable media) to endpoints accounted for 20% of threats in Q3 2024, a 1% decrease compared to the previous quarter.

Web browser downloads were the second most common malware delivery method to endpoints, responsible for 28% of threats in Q3 2024. This is a 10% increase compared to Q2 2024.

Archive files were the second most popular file type for malware delivery in Q3 2024, accounting for 34% of threats. The top five archive file formats used were ZIP, RAR, LZH, 7Z, and GZ3.