Welcome!

News Feed Item

Agari Q1 Trustindex Reveals Health Care, Retail and Banks Lag behind Etailers and Social Media in Consumer Protection in Wake of Malware Onslaught

Agari, the leading provider of real-time, data-driven security solutions that detect and prevent advanced cyberthreats, today released its 2014 first quarter edition of the Agari Email TrustIndex.

The 2014 Q1 TrustIndex covers the period from January through March 2014 and identifies the sectors and companies that have the highest and lowest risk for dangerous emails, and the sectors and companies that are taking action to stop cybercriminals from reaching consumers.

“In Q1, criminals amplified their use of email to spread data-theft malware with a specific focus on massive blitzkrieg attacks. Q1 illustrated yet again that organizations who secure their email channel not only have more consumer trust, but also fewer fraud losses, less operational overhead and stay out of headline news stories about security breaches,” said Patrick Peterson, Founder and CEO of Agari. “Despite a widening array of incidents where brands who are suffering criminal abuse trick consumers into taking action that leads to malware infection, major industry sectors fail to prevent cyberattacks with the DMARC standard. The massive volume spikes in blitzkrieg-style email attacks necessitate a proactive, preventive solution.”

Phishing is undergoing a rapid and dramatic evolution

In Q1 2014, Agari saw a dramatic evolution in phishing, with CryptoLocker “ransomware” and GameOver Zeus data-theft malware driving large attacks. CryptoLocker encrypts the user’s hard drive until a $400 Bitcoin ransom payment is made, and GameOver Zeus is the latest data-theft malware. These attacks abuse a growing number of domains, with attacks typically spiking from thousands of malicious emails per day to millions as the criminals attempt to let loose the malware barrage before the security industry can respond. Unfortunately, too many companies fail to join their peers in taking advantage of the DMARC standard.

Notable highlights from the Agari TrustIndex Report:

  • Health Care continues to be the worst performer across all measures of the study and most susceptible to email attacks and cyber-fraud. Health care records are five times more vulnerable than credit card data, categorizing all but one health care company as Easy Targets.
  • Financial Services was broken down into Payments, Mega Banks, Large Banks and Retail Banks (Europe) in Q1.
    • Retail Banks: in Q1 the ThreatScore for the largest retail banks jumped 500%, primarily the result of two months of heavy spamming connected with two banks. This shows that criminals are constantly shifting their targets and the attack landscape is volatile.
  • Social Media has been a consistent winner in security, with sites such as Facebook and Twitter achieving a perfect TrustScore of 100. These two companies were among the seven companies, out of 133 who achieved a perfect TrustScore.
  • Retailers v. Etailers
    • Retailers are still one of the main targets of email attacks, yet the sector’s ThreatScore decreased by nearly 53% from Q4 to Q1, indicating that fraudsters are aiming for higher profile attacks.
    • Etailers remain leaders in email security, with companies such as Netflix, Amazon and Groupon maintaining perfect, or near-perfect, TrustScores. Retailers have a long way to go to catch up to the security practices of Etailers.

About the Agari TrustIndex

The Agari TrustIndex contains ratings developed by Agari that reflects how fully organizations have deployed three standards (SPF, DKIM, and DMARC) across their primary active domains. While all three standards are deployed "behind the scenes" and are not directly visible to consumers in most cases, by looking at TrustIndex scores you can get a simple, easy to understand rating of how well any given organization is protecting their customers from receiving malicious email under the guise of the organization's brand and domain name. It's important to note that the Agari TrustScore reflects that level of security deployed by the organization, and is not directly related to the ThreatScore, which is an indicator of how high a level of attack is directed at an organization. A company could have a very high TrustIndex score and still have a high ThreatScore as well, as even though they've deployed effective security the bad guys are still trying to break in.

The Q1 TrustIndex includes the following industry sectors:

Financial Services

  E-Commerce   Other
  • Payments
  • Mega Banks
  • Large Banks
  • Retail Banks - Europe
 
  • Etailers
  • Retailers
 
  • Logistics
  • Airlines
  • Travel
  • Social Media
  • Health Care

*In this study, Mega Banks are retail banks with more than $5B in annual revenue; Large Banks have more than $2B in annual revenue.

The latest copy of the Agari Email TrustIndex is available for download here.

RELATED LINKS AND CONVERSATIONS

About Agari

Agari collects terabytes of email data from email receivers like Gmail and Yahoo! representing 85% of the email inboxes in the U.S., to provide global brands with a cloud-based SaaS solution that eliminates email threats, protects customers and their personal data, and proactively guards brand reputation. Today, Agari has analyzed over a trillion emails, and has blocked over a 2.5 billion malicious messages at a clip of over 200 per second. Founded by the thought leaders behind Cisco’s IronPort solutions, Agari, a recipient of the JPMorgan Chase Hall of Innovation Award and recognized as a Gartner Cool Vendor, is headquartered in Silicon Valley. Learn more at http://www.agari.com.

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
In an era of historic innovation fueled by unprecedented access to data and technology, the low cost and risk of entering new markets has leveled the playing field for business. Today, any ambitious innovator can easily introduce a new application or product that can reinvent business models and transform the client experience. In their Day 2 Keynote at 19th Cloud Expo, Mercer Rowe, IBM Vice President of Strategic Alliances, and Raejeanne Skillern, Intel Vice President of Data Center Group and ...
For better or worse, DevOps has gone mainstream. All doubt was removed when IBM and HP threw up their respective DevOps microsites. Where are we on the hype cycle? It's hard to say for sure but there's a feeling we're heading for the "Peak of Inflated Expectations." What does this mean for the enterprise? Should they avoid DevOps? Definitely not. Should they be cautious though? Absolutely. The truth is that DevOps and the enterprise are at best strange bedfellows. The movement has its roots in t...
DXWorldEXPO LLC, the producer of the world's most influential technology conferences and trade shows has announced the 22nd International CloudEXPO | DXWorldEXPO "Early Bird Registration" is now open. Register for Full Conference "Gold Pass" ▸ Here (Expo Hall ▸ Here)
Vulnerability management is vital for large companies that need to secure containers across thousands of hosts, but many struggle to understand how exposed they are when they discover a new high security vulnerability. In his session at 21st Cloud Expo, John Morello, CTO of Twistlock, addressed this pressing concern by introducing the concept of the “Vulnerability Risk Tree API,” which brings all the data together in a simple REST endpoint, allowing companies to easily grasp the severity of the ...
"We are a well-established player in the application life cycle management market and we also have a very strong version control product," stated Flint Brenton, CEO of CollabNet,, in this SYS-CON.tv interview at 18th Cloud Expo at the Javits Center in New York City, NY.
Historically, some banking activities such as trading have been relying heavily on analytics and cutting edge algorithmic tools. The coming of age of powerful data analytics solutions combined with the development of intelligent algorithms have created new opportunities for financial institutions. In his session at 20th Cloud Expo, Sebastien Meunier, Head of Digital for North America at Chappuis Halder & Co., discussed how these tools can be leveraged to develop a lasting competitive advantage ...
In his session at @ThingsExpo, Arvind Radhakrishnen discussed how IoT offers new business models in banking and financial services organizations with the capability to revolutionize products, payments, channels, business processes and asset management built on strong architectural foundation. The following topics were covered: How IoT stands to impact various business parameters including customer experience, cost and risk management within BFS organizations.
In his session at 20th Cloud Expo, Scott Davis, CTO of Embotics, discussed how automation can provide the dynamic management required to cost-effectively deliver microservices and container solutions at scale. He also discussed how flexible automation is the key to effectively bridging and seamlessly coordinating both IT and developer needs for component orchestration across disparate clouds – an increasingly important requirement at today’s multi-cloud enterprise.
Here are the Top 20 Twitter Influencers of the month as determined by the Kcore algorithm, in a range of current topics of interest from #IoT to #DeepLearning. To run a real-time search of a given term in our website and see the current top influencers, click on the topic name. Among the top 20 IoT influencers, ThingsEXPO ranked #14 and CloudEXPO ranked #17.
While the focus and objectives of IoT initiatives are many and diverse, they all share a few common attributes, and one of those is the network. Commonly, that network includes the Internet, over which there isn't any real control for performance and availability. Or is there? The current state of the art for Big Data analytics, as applied to network telemetry, offers new opportunities for improving and assuring operational integrity. In his session at @ThingsExpo, Jim Frey, Vice President of S...
Given the popularity of the containers, further investment in the telco/cable industry is needed to transition existing VM-based solutions to containerized cloud native deployments. The networking architecture of the solution isolates the network traffic into different network planes (e.g., management, control, and media). This naturally makes support for multiple interfaces in container orchestration engines an indispensable requirement.
Containers are rapidly finding their way into enterprise data centers, but change is difficult. How do enterprises transform their architecture with technologies like containers without losing the reliable components of their current solutions? In his session at @DevOpsSummit at 21st Cloud Expo, Tony Campbell, Director, Educational Services at CoreOS, will explore the challenges organizations are facing today as they move to containers and go over how Kubernetes applications can deploy with lega...
In their session at @DevOpsSummit at 21st Cloud Expo, Michael Berman, VP Engineering at TidalScale, and Ivo Jimenez, Engineer at TidalScale, will describe how automating tests in TidalScale is easy thanks to WaveRunner. They will show how they use WaveRunner, Jenkins, and Docker to have agile delivery of TidalScale. Michael Berman is VP Engineering at TidalScale. TidalScale is developing a scale up compute and resource architecture for customers to perform big data exploration and real time anal...
Your homes and cars can be automated and self-serviced. Why can't your storage? From simply asking questions to analyze and troubleshoot your infrastructure, to provisioning storage with snapshots, recovery and replication, your wildest sci-fi dream has come true. In his session at @DevOpsSummit at 20th Cloud Expo, Dan Florea, Director of Product Management at Tintri, provided a ChatOps demo where you can talk to your storage and manage it from anywhere, through Slack and similar services with...
With the introduction of IoT and Smart Living in every aspect of our lives, one question has become relevant: What are the security implications? To answer this, first we have to look and explore the security models of the technologies that IoT is founded upon. In his session at @ThingsExpo, Nevi Kaja, a Research Engineer at Ford Motor Company, discussed some of the security challenges of the IoT infrastructure and related how these aspects impact Smart Living. The material was delivered interac...