Virus activity for first six months of 2004.A report published by Sophos shows that the number of new viruses being written is increasing. In total, Sophos has detected and protected against 4,677 now viruses in the first six months of 2004, up 21% on the same period last year. The Sasser worm accounted for more than a quarter of all viruses reported to Sophos so far this year, even though the worm only first appeared in May. Sasser claimed the top spot of the virus chart, in spite of the raging battle between the widespread Netsky and Bagle worms, which has wreaked havoc across the internet from mid-February. This war produced six of the most damaging viruses of the year so far, with Netsky-P proving to be the most prevalent. The good news for computer users was the May arrest of Sven Jaschan Sven Jaschan (born April 29 1986) is the self-confessed author of the NetSky and Sasser computer worms. History Jaschan lived in the village of Waffensen, Germany and attended a computer science school in nearby Rotenburg. , the German teenager who confessed to authoring both the Sasser and Netsky worms. For the first six months of 2004, the top ten viruses (as recorded by Sophos's global network of virus monitoring stations) are as follows, 1. W32/Sasser (Sasserworm) 26.1% 2. W32/Netsky-P (Netsky variant) 21.4% 3. W32/Netsky-B (Netsky variant) 11.% 4. W32/Netsky-D (Netsky variant) 6.8% 5. W32/MyDoom-A (MyDoomworm) 4.4% 6. W32/Zafi-B (Zafi variant) 4.0% 7. W32/Netsky-Z (Netsky variant) 3.1% 8. W32/Netsky-C (Netsky variant) 2.4% 9. W32/Sober-C (Sober variant) 1.5% 10. W32/Bagle-A (Bagle worm) 1.2% Others 18.1% Comment: Following in the footsteps of last years hard-hitting Blaster worm, Sasser exploited a critical vulnerability in Microsofts operating system operating system (OS) Software that controls the operation of a computer, directs the input and output of data, keeps track of files, and controls the processing of computer programs. in order to spread. This type of worm is proving to be extremely successful as Microsoft is finding it tough to ensure computer users apply patches as soon as the flaws are discovered. Sasser may have taken top spot, but six of the biggest viruses of the last six months were all Netsky and Bagle variants--these caused a continued nuisance for PC users the world over as their authors entered into a very public game of virus writing one-upmanship. Virus writers haven't had it all their own way so far in 2004. Increased scrutiny from law enforcement agencies A law enforcement agency (LEA) is a term used to describe any agency which enforces the law. This may be a local or state police, federal agencies such as the Federal Bureau of Investigation (FBI) or the Drug Enforcement Administration (DEA). and Microsofts bounty bounty, payment made by a government bounty, amount paid by a government for the achievement of certain economic or other goals. It often takes the form of a premium paid for the increased production or export of certain goods. initiative to encourage people to reveal virus writers, led to a very high profile arrest in Germany. Sven Jaschan, teenage author of the Sasser worm and member of Skynet, the gang responsible for distributing Netsky, confessed in May. The German virus-writing community has been relatively quiet ever since. MyDoom, the fifth most damaging virus so far this year, highlights the increasing trend for virus writers to attempt to create zombie A computer that has been covertly taken over in order to perform some nefarious task. It is estimated that millions of PCs around the world have been compromised and, under the control of a third party, routinely transmit messages unbeknownst to the user. armies of possessed PCs. This worm, which first appeared in January, opened a backdoor See trapdoor. into infected PCs, allowing hackers to launch distributed denial of service attacks An assault on a network that floods it with so many additional requests that regular traffic is either slowed or completely interrupted. Unlike a virus or worm, which can cause severe damage to databases, a denial of service attack interrupts network service for some period. on the websites belonging to Microsoft and SCO (The SCO Group, Lindon, UT, www.sco.com) A leading vendor of Unix operating systems for the x86 platform. SCO had also offered Linux, but abandoned the line in the spring of 2003. The SCO Group is the combination of two companies: Utah-based Caldera, Inc. . The sixth most prevalent virus so far this year, the Zafi-B worm, is a prime example of how virus writers can use their malicious code to distribute political messages. This worm called for the Hungarian government to house the homeless and introduce the death penalty against criminals. It continues to be extremely successful in infecting computer users, spreading itself by email and peer-to-peer filesharing systems. First mobile phone virus See smartphone virus. discovered: The Cabir worm, first seen in June, was a proof of concept mobile phone virus. The worm that was written by the virus writing gang 29A, proved that it was possible for a virus to spread via Bluetooth to other compatible mobile phones in the vicinity. The worm posed no threat to mobile phone users as the virus was not released in the wild. More arrests: The first female to be charged with distributing a virus was arrested in February. Kim Vanvaeck, aka 'Gigabyte', suspected author of several viruses including Coconut-A, Sahay-A and Sharp-A, was arrested by Belgian authorities and charged with computer sabotage sabotage [Fr., sabot=wooden shoe; hence, to work clumsily], form of direct action by workers against employers through obstruction of work and/or lowering of plant efficiency. Methods range from peaceful slowing of production to destruction of property. . If convicted she faces up to three years in prison and fines of up to 100,000 Euros. In May, Wang Ping-an, a 30-year-old computer engineer was arrested in Taiwan for allegedly writing and distributing a Trojan horse See Trojan. Trojan Horse hollow horse concealed soldiers, enabling them to enter and capture Troy. [Gk. Myth.: Iliad] See : Deceit (application, security) Trojan horse that enabled hackers to steal sensitive information from the island's government computers- 'These arrests have sent a strong message to the virus community that the authorities will not turn a blind eye to criminal computer activity. However, the real deterrent will be tough sentencing. It will be interesting to see what punishments are dished dished adj. 1. Concave. 2. Slanting toward one another at the bottom. Used of a pair of wheels. Adj. 1. dished - shaped like a dish or pan dish-shaped, patelliform concave - curving inward out by the authorities against convicted virus writers and distributors. www.sophos.com |
|
||||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion