Malware statistics – You’d better get your computer vaccinated

Malware statistics - Featured image

Trojan horses, viruses, spyware… Some of these have fancy names, others just sound ominous. But there’s one thing they have in common: You don’t want these anywhere near your computer, smartphone, or tablet.

Malware can take a huge toll on your system. It’s not just the equivalent of catching a cold during winter; it’s much worse. A handkerchief is, unfortunately, of no use here.

You need to know your enemy before you can fight back. That’s why we’ve compiled the latest malware statistics, including some lesser-known facts about this hi-tech plague.

Key malware statistics

  • 350,000 new pieces of malware are detected every day.
  • Over 7 billion malware attacks were reported this year.
  • There are now nearly 980 million malware programs out there.
  • Every minute, four companies fall victim to ransomware attacks.

Malware detection statistics

1. There are now nearly 980 million malware programs out there.

(AV-Test Institute)

Since 2013, malware has been spreading exponentially. The initial boom doubled the number of malicious files and programs infecting the web. In the following years the growth might have slowed down, but it definitely hasn’t stopped. Even with built-in antivirus software protecting the newest operating systems, there’s more malware online than ever before.


2. 350,000 new pieces of malware are detected every day.

(AV-Test Institute)

The rate at which malware spreads is terrifying. Anti-malware institutes include every new malicious program they find in their malware database. Hundreds of thousands of files become infected by malware on computers and websites every day. These are mostly the result of existing infections that keep spreading like actual diseases.


3. SonicWall has registered more than 7 billion malware attacks this year alone.

(SonicWall)

Some people and companies continue to be on the receiving end of malicious software more often than others. In 2018, there were over 10 billion attacks registered by the companies that keep an eye on global cybersecurity and malware attack statistics. While the end of 2019 is not far away, this year’s numbers are still very intimidating.


4. In 2018, the number of malware variants dropped by 63%.

(Symantec)

This seems to be a trend among the creators of malicious programs. In 2018, there were far fewer variants of new malware appearing than in previous years. This means there are fewer ways malware could potentially take down computer systems.


5. The number of malware sites has hit a 12-year low.

(Google)

Ever since late 2007, the number of websites containing malware has been consistently above 100,000. Come early 2018, this number began to decline rapidly. The latest Google report cites that there were only 28,000 infected websites in 2018. In the space of one year from 2017, the number of malware-infected websites decreased by a factor of 25.


6. Each week, Google detects 50 websites containing malware.

(Google)

There hasn’t been a week in recent years without at least a few malware threats popping up on Google’s radar. The average number of new websites that are compromised by linking to malware pages or containing codes hackers can abuse is around 2,500 every week. However, sites that actually contain malware represent just 1.6% of this number; or around 50 per week.


7. Malware distributed through encrypted protocols is up 58% from 2018.

(SonicWall)

Hackers are becoming sneakier, which is a cause for concern in itself. Year after year, they’re finding ways to mask their malicious plots as legitimate websites. Websites using SSL and similar encryptions are no longer as safe as we once thought they were. Now, these supposedly secure sites have become one of the latest malware threats. Since visitors trust these encryptions, it’s becoming more and more important to provide extra security for your website.


8. From 2018 to 2019, the IoT malware infection rate rose by 33%.

(SonicWall)

Internet of Things devices are slowly but steadily finding their way into our homes. But there’s a price you pay for convenience; these devices also carry certain security risks with them. Unfortunately for everyone looking to create a smart home, IoT is a massive malware target. The newest malware statistics show there have been more than 25 million IoT malware attacks detected in 2019 alone.


9. Three in four infected IoT devices are routers.

(Symantec)

Routers have proven to be the most-desirable targets for hackers, with 75% of all IoT malware infecting these devices. After all, a router can then spread the infection to the local network, which can in turn infect dozens of additional devices.


Computer virus statistics

10. China has the highest number of malware-infected computers.

(Statista)

Nearly every second computer in China is infected by some form of malware. Its 47% malware infection rate is the highest in the world, followed by Turkey with 42% and Taiwan with 39%.


11. Trojans account for 11% of all computer malware.

(Statista)

The most common malware programs – both globally and in the United States – are Trojans. Coming in joint second place and each representing around 4% of total malware infections are browser modifiers, software bundlers, and worms.


12. Viruses are mostly spread via .exe files.

(Checkpoint)

Unsurprisingly, good old executables are still the easiest way to catch a computer virus. Recent computer virus stats show that 53% of viruses spread by .exe files, while .pdf is way behind in second place with just 6%. Executables are the most commonly infected email attachments, too, accounting for 21% of all infected files sent via email.


13. Infected Office files account for nearly half of all malware sent via email.

(Symantec)

“Be careful with your emails,” the experts are warning us. In just one year, the rate of Windows malware distributed through Office files via email has jumped from 5% to a whopping 48%. These files include Word, Excel, and other formats combined. They now make up nearly half of the malicious files that end up in our inboxes.


14. Cryptojacking is on a steady decline.

(Symantec)

Cryptojacking – the process of abusing other people’s machines for mining a cryptocurrency – isn’t such a hot trend among hackers anymore. Symantec’s virus statistics show a strong correlation between the value of Bitcoin (and other cryptocurrencies) with the popularity of cryptojacking. As such, there was a 52% drop in cryptojacking attempts in 2018.


15. From 2017 to 2018, there was a 25% increase in the number of hackers using destructive malware.

(Symantec)

In recent years, the number of hackers employing destructive malware for their nefarious deeds has been increasing rapidly. Cybercriminals are now looking to strike at companies and small businesses; on average, each hacking group targeted 55 organizations over the past year.


16. The infamous ILOVEYOU virus caused $10 billion of damage when it struck in 2009.

(CNET)

No lesson in the history of malware is complete without mentioning ILOVEYOU. This worm is considered the most destructive computer virus of all time. It did one very simple thing: It renamed all files “iloveyou” until the system crashed. While the exact scope of this attack was never revealed, analysts said it affected roughly 10% of all PCs around the world.


Mobile malware statistics

17. The total number of mobile malware attacks had reached 30 million by the end of 2018.

(McAfee)

Some say 2018 was the year of mobile malware. New malware threats were popping up like mushrooms after the rain, with more than five million new malware infections affecting mobile devices during the year.


18. With a 44.2% infection rate, mobile malware is most widespread in Iran.

(Kaspersky)

Looking at global malware infection statistics for smartphones and tablets, Iran, Bangladesh, and Nigeria had the highest infection rate of all countries in 2018. However, the news wasn’t all bad for Iran; the country suffered 13% fewer mobile malware attacks in 2018 than it did in 2017, but that still couldn’t shift it from the top spot on the global leaderboard.


19. RiskTool is the most-common piece of mobile malware.

(Kaspersky)

Malicious apps that enable further hacking of the infected device are the most-common form of mobile malware. RiskTool alone accounts for 52% of all malware, while TrojanDropper infections account for 17%. These apps are just the can openers, making the way for destructive malware to reach your smartphone, but they’re still a serious threat.


20. There are 50 times more malware infections on Android devices than on iOS devices.

(Panda Security)

When it comes to iOS vs Android malware statistics, the results speak for themselves. Android is the mobile platform with the highest malware infection rate, accounting for 47.15% of all infected devices, while iOS accounts for under 1% of infections.


21. In September 2019, 172 harmful apps were available for download via Google Play Store.

(Lukas Stefanko)

From time to time, malicious apps containing common Android viruses and ad-serving tools find their way onto legitimate app marketplaces. According to research from September 2019, these apps had accumulated more than 335 million downloads. They include adware, Trojans, and plain old scams.


22. Mobile banking Trojans were 1.6 times more common in 2018 than in 2017.

(Kaspersky)

Kaspersky detected more than 150,000 mobile banking Trojans in 2018. The biggest spike in activity occurred in September 2018, with 2.5 million mobile banking Trojan attacks happening across the globe. Smartphone malware statistics from that period show that Russia stands out as the biggest target: 2.2% of its mobile banking users have been affected by these Trojans.


23. Mobile backdoor apps are now spreading via SMS.

(McAfee)

TimpDoor, a variant of backdoor malware targeting Android devices, saw a huge spike of activity during 2018. It managed to trick smartphone users into installing it by sending text messages to a third-party download site, further exposing devices to hacker attacks.


24. FakeApp malware infections increased three to four times with the beta announcement of Fortnite’s release.

(McAfee)

Android malware statistics show that these malicious programs spread best via fake apps. Fortnite, the most popular video game in the world, launched in the middle of 2018, but only on select Android devices. Gamers looking to try out the game eagerly downloaded apps that looked for all intents and purposes like the real game. What they actually installed on their devices were FakeApp malware programs that either bombarded the phone with apps (thus generating revenue for their developers) or downloaded more apps in the background, leaving the device vulnerable to more-severe attacks.


25. 47% of free Android antivirus programs can’t properly detect malware.

(Comparitech)

There’s a good reason why serious developers charge for their antivirus software. Free solutions are simply not up to snuff when it comes to smartphone security, with eight of 21 popular free apps failing to register even a basic malware threat.


Ransomware statistics

26. Ransomware attacks targeting corporations increased 12% from 2018 to 2019.

(Symantec)

Just as hackers are changing their malware plans to include fewer variants, they’re also switching to higher-value targets. Overall, ransomware attacks have declined 20% during this period, but the fact that they now usually target businesses makes them potentially even more dangerous. This makes sense; companies are either more likely to pay a large ransom or they hold data sensitive enough to be of value to hackers.


27. More than 850 million ransomware infections were detected in 2018.

(PhoenixNAP)

Over the past two years, the number of ransomware attacks has nearly doubled. What used to be a very rare occurrence compared to other types of malware is now affecting millions of devices every month. Virus statistics for 2018 show that we’ve reached the highest ransomware  infection rate in history, while analysts predict that this number will continue to rise dramatically.


28. Ransomware accounts for nearly one in 10 malware infections in Thailand.

(Statista)

Thailand might be an amazing place to visit on your vacation, but remember to bring some good antivirus software for your devices (along with sunscreen and a Hawaiian shirt, of course). The country is often targeted by hackers; ransomware accounts for 9.57% of all malware infections in Thailand. Iran and the United Arab Emirates also have a big ransomware problem – 8.5% of malware infections in those countries are ransomware.


29. Four companies are hit by a ransomware attack every minute in 2019.

(Cybercrime Magazine)

How severe are the current malware threats? Analysts say a business falls under an attack every 14 seconds in 2019. Hackers are using ransomware for their corporate attacks more than ever, either stealing data so they can sell it on the black market or extorting money from their victims.


30. Mobile ransomware has risen 33% from 2018 to 2019.

(Symantec)

Weak antivirus protection on mobile devices is surely taking its toll now. In its malware trends report, Symantec reported that mobile ransomware and Trojans have seen the biggest growth in the past year. We keep a lot of data on our smartphones now, and hackers are well aware of that fact.


31. The United States  was the most-popular target for mobile ransomware attacks in 2018.

(Kaspersky)

As for the mobile ransomware infection rate, the US was at the top of the leaderboard in 2018. In its malware statistics report, Kaspersky Lab found that 1.42% of monitored devices in the US were targeted by mobile ransomware in 2018.


32. The infamous WannaCry ransomware program earned $143,000 in Bitcoin payments in 2017.

(Cisco)

During 2017, there was one very aggressive piece of ransomware making headlines. Analysts found that approximately 312 ransoms were paid to the cybercriminals behind WannaCry, but the exact number of delivered decryption keys was never revealed. Government agencies believe it was all just a smokescreen for a different computer threat: data deletion.


33. In 2017, a data wiper infected more than 1 million computers in Ukraine.

(Cisco)

At least 2,000 Ukrainian companies suffered a massive data wipe due to Nyetya malware in 2017. Among several malware attack vectors, Nyetya used a code vulnerability called EternalBlue and found its way onto computers via tax software that most of these companies used at the time. Hackers deployed it through an automated update tool, which by itself didn’t look suspicious. Malware infection statistics from that period clearly show that retail was the worst-affected target.


Frequently asked questions

What percentage of computers have malware?

In the United States, 30% of computers are infected with some form of malware, which puts the US among the top 10 countries when it comes to the infection rate. The highest percentage of malware infections is in China (47%), followed by Turkey with 42%.

How much malware is created every day?

Every day, there are at least 350,000 instances of new malware being created and detected. This number takes into account both malware programs and unwanted apps that can, down the line, cause malware infections if they stay installed long enough.

Which countries are the hardest hit by malware?

China, Turkey, and Taiwan lead computer viruses statistics, with an infection rate of about 40% in each of these countries. As for the mobile malware infection rate, Iran has been hit the hardest for the past several years. In 2018, Iran had a mobile malware infection rate of 44%.

How is malware distributed?

In most cases, malware is distributed via email, through an infected application, or by a malicious code injected into the website. After the initial infection, malware distributes itself further by accessing the user’s address book and spamming contacts with emails and texts. Some types of malware also infect USB drives and any other devices connected to the computer, while mobile malware can spread over wireless networks and into routers.

What are the different types of malware?

Malware is categorized based on the behavior it exemplifies once it has infected a device. Some malware examples include Trojan horses, adware, spyware, rootkits, and ransomware, which is becoming more widely used by hackers today. Not all antivirus detection types are effective against each of these threats, so some of them manage to slip through the cracks. According to the latest malware statistics, Trojans are the most common form of malware among infected machines.

Sources