Security and products; top ten threats and hoaxes reported in February.

Sophos has revealed the most prevalent malware (MALicious softWARE) Software designed to destroy, aggravate and otherwise make life unhappy. See crimeware, virus, worm, logic bomb, macro virus and Trojan. threats and email hoaxes causing problems for computer users around the world during February 2007.

The figures, compiled by Sophos's global network of monitoring stations, show that the HckPk family has had the greatest impact on computer users this month, accounting for more than half of malware seen during February.

Hackers are increasingly using encryption The reversible transformation of data from the original (the plaintext) to a difficult-to-interpret format (the ciphertext) as a mechanism for protecting its confidentiality, integrity and sometimes its authenticity. Encryption uses an encryption algorithm and one or more encryption keys. and packer packer /pack·er/ (pak´er) an instrument for introducing a dressing into a cavity or a wound.

pack·er
n.
1. An instrument for tamponing.

2. See plugger. tools--such as those belonging to the HckPk family--to camouflage their malicious code. January's hardest-hitting worm, Dorf, plus the prevalent Dref mass-mailing worms are just two examples of the malware currently being hidden within HckPk programs. Sophos has also found that cybercriminals are constantly modifying their HckPk disguises in an attempt to bypass IT defences. The top ten list of malware threats in February 2007 reads as follows:

1. Mal/HckPk-C  50.3%
2. Netsky       15.1%
3. Mytob        12.5%
4. Zafi          4.8%
5. Sality        3.8%
6. Mydoom        3.0%
7. Bagle         2.4%
8. Clagger       1.4%
9. Nyxem         1.1%
10. SraDI        1.0%

"HckPk is a bit like Mr Potato Head--it uses disguises to bamboozle bam·boo·zle
tr.v. bam·boo·zled, bam·boo·zling, bam·boo·zles Informal
To take in by elaborate methods of deceit; hoodwink. See Synonyms at deceive.

[Origin unknown. anti-virus protection into thinking the attachment is safe when, in reality, malicious code lies within," said Sophos. "Today's most widespread threats, such as Dref and Dorf, use HckPk, so by blocking it, we zap A command that typically deletes the data within a file but leaves the file structure intact so that new data can be entered. See wipe.

1. (language) ZAP - A language for expressing program transformations.

["A System for Assisting Program Transformation", M.S. the nasty threats lurking See lurk.

(messaging, jargon) lurking - The activity of one of the "silent majority" in a electronic forum such as Usenet; posting occasionally or not at all but reading the group's postings regularly. inside.

www.sophos.com

COPYRIGHT 2007 A.P. Publications Ltd.
No portion of this article can be reproduced without the express written permission from the copyright holder.

Reader Opinion

Article Details
Printer friendly Cite/link Email Feedback
Title Annotation:	SOFTWARE WORLD DIGEST
Publication:	Software World
Date:	Mar 1, 2007
Words:	226
Previous Article:	Security and products; 80 percent of SMBs fear a threat.(SOFTWARE WORLD DIGEST)
Next Article:	Security and products; Secure Software Forum 2006 survey results.(SOFTWARE WORLD DIGEST)
Topics:	Computer viruses Safety and security measures

Related Articles
Sophos Six-Month Summary Of Virus Activity.
Free live virus and hoax information. (Virus Notes).(Sophos)
Top Ten Viruses and Hoaxes in July 2002.
Klez worm most prolific virus of year. (Virus Notes).
Top ten viruses and hoaxes in November 2002, Sophos. (Virus Notes).
Top ten viruses reported to Sophos in March 2004.(Virus Notes)(Brief Article)
Top ten viruses reported in August.(Security News)(Brief Article)
Top ten viruses 2005.(Security News)(Brief Article)
Top ten viruses reported to Sophos in February.(Virus Notes)
Top ten malware threats and hoaxes reported to Sophos in September 2006.(Security News and Products)