Free Newsletter
Register for our Free Newsletters
Newsletter
Zones
Access Control
LeftNav
Alarms
LeftNav
Biometrics
LeftNav
Detection
LeftNav
Deutsche Zone (German Zone)
LeftNav
Education, Training and Professional Services
LeftNav
Government Programmes
LeftNav
Guarding, Equipment and Enforcement
LeftNav
Industrial Computing Security
LeftNav
IT Security
LeftNav
Physical Security
LeftNav
Surveillance
LeftNav
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
 
News

April swamped with new IT security threats

ESET : 11 May, 2007  (Technical Article)
ESET research shows increase in new malicious software during April after a stable period.
ESET has announced that unlike the fairly broad threat profile for March, April showed renewed vigour among new threats, with the top five representing nearly 14% of all threat activity for the month.

Into first place charged Win32/TrojanDownloader.Ani.Gen, which exploits how Windows handles animated cursor (.ani) files. During the month of April, close to 5% of all detections were of the Ani.Gen threat, as malware writers made the most of this latest vulnerability in the operating system.

"This type of attack exposes even fairly sophisticated users to "drive by" attacks that can compromise their computers," said Randy Abrams, Director of Education ESET in a recent blog entry. "For web browsing, the use of virtualization technologies such as SandboxIE can afford some protection, but email still remains a potential attack vector. Although, forcing Outlook to render email in plain text is a mitigating tactic, Outlook Express will remain vulnerable to attack, even when configured to render email in plain text."

Win32/PSW.Agent.NCC, dropped from first place last month to second, account for 2.85% of detections during April. This trojan is part of a family used for stealing passwords through keylogging techniques. In third place is Win32/Pacex.Gen, a remarkably fast spreading mass-mailing worm discovered during March.

Win32/TrojanDownloader.Agent.AWF was fourth in April, with around 1.80 of detections. This threat is used for downloading other malware from web sites to create botnets that are then used for propagating spam and delivering DDOS attacks. The fifth place on the ranking for April was held by Win32/Perlovga, a trojan that has increased its presence during the current year. Moving up from seventh place last month, this threat can be received by users from different sources, like email, FTP or P2P applications. Perlovga is used to collect sensitive information from infected computers.

Top 10 Threats for April 2007

1 Win32/TrojanDownloader.Ani.Gen - 4.95%.
2 Win32/PSW.Agent.NCC - 2.85%.
3 Win32/Pacex.Gen - 2.21%.
4 TrojanDownloader.Agent.AWF- 1.80%.
5 Win32/Perlovga - 1.45%.
6 Win32/Adware.Boran - 1.30%.
7 Win32/PSW.QQRob - 1.27%.
8 Win32/Nuwar.gen - 1.18%.
9 Win32/Netsky.Q - 1.17%.
10 Win32/Adware.Virtumode - 1.14%.

Bookmark and Share
 
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
 
   © 2012 ProSecurityZone.com
Netgains Logo