Furthermore, the Emotet botnet was back in a big way, Log4Shell attacks have tripled, and malicious cryptomining abounds.
"Based on the early spike in ransomware this year and data from previous quarters, we predict 2022 will break our record for annual ransomware detections," said WatchGuard CSO Corey Nachreiner.
"We continue to urge companies to not only commit to implementing simple but critically important measures but also to adopt a true unified security approach that can adapt quickly and efficiently to growing and evolving threats."
Other findings include the emergence of the Lapsus$ extortion group, the comeback of Emotet, and a surge in PowerShell based attacks (with script-based attacks in general accounting for 88% of all detections).
Unique network attacks are another issue. The top 10 IPS signatures accounted for 87% of all network attacks, but more unique detections occurred than in any other period since 1Q19.
WatchGuard's quarterly research reports are based on anonymised data from active WatchGuard Fireboxes whose owners have opted to share data.
In Q1, WatchGuard blocked a total of more than 21.5 million malware variants (274 per device) and nearly 4.7 million network threats (60 per device).
The full report is available here.