Symantec, Kaspersky issue threat reports

Posted by   Virus Bulletin on   Sep 26, 2006

Trojans, vulnerabilities, spam and crime loom large.

Symantec and Kaspersky have both released overviews of security dangers faced in the first half of 2006 this week, and both present a fairly gloomy picture.

The Kaspersky study showed a steady rise in new trojans, and new variants of existing ones, particularly backdoors, downloaders and data-stealing spyware, while self-replicating malware declined slightly. Also big between January and July, the nasties known as 'ransomware' or 'extortionware', encrypting data and demanding fees for the password, and also cyber-blackmail. 40% of web probes and attacks came from the US, while spam rose from a low of 44% in early January to a high of 86% in late February, and became steadily more criminalised - a trend which is expected to continue.

Also facing us in the future, the Russian firm predicts more spyware, and continued use of browser holes to initiate silent drive-by downloads onto the computers of unsuspecting users. Mobile phone hacking and malware are also expected to rise, as phones get more sophisticated and more widely used.

Browser holes were also highlighted in Symantec's report, with stats including 69% of vulnerabilites affecting web apps, 47% of all browser-based attacks targeting Microsoft Internet Explorer, which had a mere 38 vulnerabilities compared to Mozilla Firefox's 47, but left them unpatched for an average nine days compared to Firefox's one day. Microsoft's record on patch speed was good though, the fastest among OS vendors, along with RedHat, at 13 days to develop fixes, leaving Apple (37 days), HP (53 days) and Sun (89 days) in their dust.

Also logged by Symantec, an average 6,110 DoS attacks per day, mostly targeting ISPs in the US, with 20% of the zombies sitting in China and 42% of the herders based in the US. Phishing was up by 81%, with spam making up 54% of all email sent, 58% originating from the US. Phishing mainly focused on financial services, while spam's favourite subjects were health-related. Almost 7,000 new viruses and worms were identified, but five of the top ten new malware families were trojans.

Coming up in the future, more polymorphism in viruses, attacks on new web technologies such as AJAX, potential Windows Vista vulnerabilities, and indeed more vulnerabilities in general.

The Kaspersky report can be read in full here. Symantec's study can be found here, with a summary press release here.

Posted on 26 September 2006 by Virus Bulletin

 Tags

twitter.png
fb.png
linkedin.png
hackernews.png
reddit.png

 

Latest posts:

VBSpam tests to be executed under the AMTSO framework

VB is excited to announce that, starting from the Q3 test, all VBSpam tests of email security products will be executed under the AMTSO framework.

In memoriam: Prof. Ross Anderson

We were very sorry to learn of the passing of Professor Ross Anderson a few days ago.

In memoriam: Dr Alan Solomon

We were very sorry to learn of the passing of industry pioneer Dr Alan Solomon earlier this week.

New paper: Nexus Android banking botnet – compromising C&C panels and dissecting mobile AppInjects

In a new paper, researchers Aditya K Sood and Rohit Bansal provide details of a security vulnerability in the Nexus Android botnet C&C panel that was exploited in order to gather threat intelligence, and present a model of mobile AppInjects.

New paper: Collector-stealer: a Russian origin credential and information extractor

In a new paper, F5 researchers Aditya K Sood and Rohit Chaturvedi present a 360 analysis of Collector-stealer, a Russian-origin credential and information extractor.

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.