The Month of Malicious Spam: Fraudsters Step up Attempts to Infect PC Users.Sophos Announces Top 10 Web and Email Borne Threats for August 2007 BOSTON -- Sophos, a world leader in IT security and control, has revealed the most prevalent malware (MALicious softWARE) Software designed to destroy, aggravate and otherwise make life unhappy. See crimeware, virus, worm, logic bomb, macro virus and Trojan. threats causing problems for computer users around the world during August 2007. The figures, compiled by Sophos's global network of monitoring stations, show a dramatic drop in malware spreading in the form of email attachments See e-mail attachment. , with just one infected in·fect tr.v. in·fect·ed, in·fect·ing, in·fects 1. To contaminate with a pathogenic microorganism or agent. 2. To communicate a pathogen or disease to. 3. To invade and produce infection in. message in every 1,000 emails in August, compared to one in 322 during the first six months of 2007. Spam, however, has continued to be a problem - much of it linking to malicious websites designed to infect infect /in·fect/ (in-fekt´) 1. to invade and produce infection in. 2. to transmit a pathogen or disease to. in·fect v. 1. users. A series of large-scale attacks have been made via spam email, directing users to infected webpages with the promise of ecards, pictures of nude celebrities, YouTube movies and pop music videos. People visiting these sites are running the risk of having their PCs infected by malicious code, which can then steal personal information, spam out more malware and junk email, or launch distributed denial of service attacks An assault on a network that floods it with so many additional requests that regular traffic is either slowed or completely interrupted. Unlike a virus or worm, which can cause severe damage to databases, a denial of service attack interrupts network service for some period. against innocent parties. The total number of infected webpages continues to grow, although at a slightly slower rate than the month before. During August, Sophos detected an average of 5,000 new infected webpages each day, compared to 6,000 in July. There was also a sharp spike in spam activity in the middle of August due to one of the world's largest ever single spam campaigns, which was designed to manipulate stock prices. The top 10 list of web-based malware threats in August 2007 includes:
1. Mal/Iframe 47.8%
2. Mal/ObfJS 17.7%
3. Troj/Decdec 14.0%
4. Troj/Fujif 4.3%
5. Mal/EncPk 2.5%
6. Troj/Psyme 2.2%
7. Mal/Packer 1.1%
8. Troj/Pintadd 1.0%
9. VBS/Redlof 0.7%
10. Mal/Behav 0.5%
Others 8.2%
Mal/Iframe and ObfJS have retained their positions at the top of the chart, while Decdec has crept crept v. Past tense and past participle of creep. crept Verb the past of creep crept creep up to third place, accounting for 14 percent of this month's web-based malware, which is up 11 percent from July. "Whether operating a computer for personal use or business use, people must be aware that cybercriminals are on the prowl using a one-two punch one-two punch n. 1. A combination of two blows delivered in rapid succession in boxing, especially a left lead followed by a right cross. 2. Informal An especially forceful or effective combination or sequence of two things. system that combines regular email scams with sophisticated web-based malware attacks," said Ron O'Brien, senior security analyst at Boston-based Sophos. "IT managers, web hosts and ISPs alone cannot defend against malicious attacks entirely. Users must become better educated about the types of threats out there, as well as the tools available to protect themselves from such attacks." The top 10 list of countries hosting malware-infected web pages in August 2007 includes: 1. China (inc. Hong Kong) 44.8% 2. United States 20.8% 3. Russia 11.3% 4. Ukraine 7.7% 5. Poland 2.4% 6. Germany 1.6% 7. Netherlands 1.1% 8. Italy 0.9% 9= Canada 0.8% 9= United Kingdom 0.8% Others 7.8% While the top three countries hosting malware-infected webpages during August have remained unchanged from July, the percentage of malicious pages hosted by them has dropped by 10 percent to 76.6 percent. The proportion of infected pages hosted by the Ukraine has more than doubled in the last month, and the Netherlands, Italy and Canada have all re-entered the chart. The top 10 list of email-based malware threats in August 2007 includes: 1. W32/Netsky 30.5% 2. W32/Zafi 20.0% 3. W32/Mytob 15.0% 4. Troj/Pushdo 10.8% 5. Troj/Dloadr 4.8% 6. W32/MyDoom 4.4% 7. Mal/Dropper 2.3% 8. W32/Bagle 2.1% 9. W32/Sality 1.8% 10. W32/Traxg 1.2% Others 7.1% While the Pushdo Trojan horse See Trojan. Trojan Horse hollow horse concealed soldiers, enabling them to enter and capture Troy. [Gk. Myth.: Iliad] See : Deceit (application, security) Trojan horse has been around since March, it is a newcomer to the top 10, accounting for 10.8 percent of all email borne malware during August. Its rise can be attributed to the fact that four new variants of Pushdo are currently being spammed out every day, in a bid to try and bypass security systems. "Sophos has noted throughout the past months that there is a considerable rise in web-based attacks, while email-only threats are on the decline," said O'Brien. "Such new delivery techniques are designed to skate skate, fish: see ray. skate Any of nine genera (suborder Rajoidea) of rounded to diamond-shaped rays. These bottom-dwellers are found from tropical to near-Arctic waters and from the shallows to depths of more than 9,000 ft (2,700 m). by security filters. However, SophosLabs continues to identify variants of older malware being released in these scams, making it easier for our technology to detect and defend against the threats." During August, Sophos continued to see hoaxes and chainletters spreading between internet users Internet user n → internauta m/f Internet user Internet n → internaute m/f via email. One new hoax Hoax Balloon Hoax, The news story in 1844, reporting the transatlantic crossing of a balloon with eight passengers. [Am. Lit.: The Balloon Hoax in Poe] Piltdown man missing link turned out to be orangutan. [Br. Hist. , which took advantage of the growing popularity of social networking websites This article or section needs sources or references that appear in reliable, third-party publications. Alone, primary sources and sources affiliated with the subject of this article are not sufficient for an accurate encyclopedia article. , warned that Facebook users who accepted a friend invitation from a user called Bum_tnoo7 would be opening themselves up to identity theft. Graphics of the above top ten virus chart are available at www.sophos.com/pressoffice/imggallery/topten/. For more information about safe computing computing - computer , including anti-hoax policies, please visit: www.sophos.com/virusinfo/bestpractice/. About Sophos Sophos is a world leader in IT security and control. Sophos offers complete protection and control to business, education and government organizations - defending against known and unknown malware, spyware Software that sends information about your Web surfing habits to its Web site. Often quickly installed in your computer in combination with a free download you selected from the Web, spyware transmits information in the background as you move around the Web. , intrusions, unwanted applications, spam, policy abuse and uncontrolled network access (NAC See network access control. ). Sophos's reliably engineered, easy-to-operate products protect more than 100 million users in more than 150 countries and are procured exclusively through channel partners. Through over 20 years' experience and a global network of threat analysis centers, the company responds rapidly to emerging threats and achieves the highest levels of customer satisfaction in the industry. Sophos is a global company with headquarters in Boston, MA, and Oxford, UK. For more information on Sophos, visit www.sophos.com and for the latest breaking security updates please visit the SophosLabs blog, http://www.sophos.com/security/blog. |
|
||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion