BlackFog collected threat statistics on a global basis for the first 9 months of 2019 (threat statistics Q3 2019). What follows is a summary of the data exfiltration across all endpoints including Windows, Mac, Android and iOS devices.
Dark Web
BlackFog saw a steady decline in Dark Web exfiltration over the quarter representing 1.69% of traffic, a decrease from both Q1 and Q2. However, BlackFog saw a dramatic increase in PowerShell attacks in Q3 at 7.86%, which is the highest we have seen for the year, up from 3.51% in the previous quarter. This reflects the increased use of the PowerShell for fileless attacks and the increase in the number of ransomware attacks globally.
Geographic Exfiltration
BlackFog reported a decrease in data exfiltrated to Russia this quarter, totaling 13.5% compared to 19.43% in the previous quarter. Exfiltration to China remained relatively stable at 2.13% compared with 2.62% in the previous quarter.
Direct IP’s and Spyware
No significant changes were found with other core statistics. Spyware represented 1.57%, and the use of direct IP’s for communicating with servers represented 37.03% of all attacks.
Major Threat Vectors
Share This Story, Choose Your Platform!
Related Posts
BlackFog ADX Instinct: Your Virtual CISO
ADX Instinct, our expert-led virtual CISO service provides strategic guidance, risk management and tailored compliance support.
BlackFog Report Reveals 36% Increase in Q3 Ransomware Attacks YoY
BlackFog report reveals 36% YoY increase in Q3 ransomware attacks 2025, with healthcare, government and technology among the hardest hit.
2025 Q3 Ransomware Report
BlackFog’s 2025 Q3 Ransomware Report - global cyber battlefield heats up as ransomware groups escalate attacks. Download full report for key insights.
How To Prevent Phishing: Essential Strategies for Businesses
Find out everything you need to know about how to prevent phishing attacks from impacting your business in our comprehensive guide.
Spear Phishing Explained: How To Recognize And Prevent Targeted Cyberattacks
Targeted spear phishing attacks remain a threat to every business. Make sure your employees know how to spot them and what to do to minimize the risk.
What Is Clone Phishing? How To Detect And Prevent This Overlooked Cyberthreat
Clone phishing is a subtle but dangerous attack that's easy to miss. Learn how it works, how it differs from other threats and what to do if someone falls victim.