Free Newsletter
Register for our Free Newsletters
Access Control
Deutsche Zone (German Zone)
Education, Training and Professional Services
Government Programmes
Guarding, Equipment and Enforcement
Industrial Computing Security
IT Security
Physical Security
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor

Fortinet virus report for March 2008

Fortinet : 01 April, 2008  (Technical Article)
Persistence of pushdo virus throughout March jettisons the Trojan into the top spot of last month's threat list from Fortinet.
Fortinet has announced the top 10 most reported high-risk threats for March 2008. Sundays may be a day of rest, but the Pushdo.EV Trojan malware was not honouring this tradition during the past month. Fortinet threat researchers witnessed a spike in activity over four consecutive Sundays -- from February-end to March-end -- propelling the Pushdo variant to the top threat spot. Pushdo.EV grabbed an impressive 13.5 percent of all malware activity for the month, which allowed the Trojan family as a whole to claim credit for nearly one-third of the total number of threats observed.

With intelligence gathered from Fortinet's FortiGate multi-threat security systems in production worldwide, the FortiGuard Global Security Research Team observed the following broad trends for the month:.

* Pushdo.EV rose to the top of the list by sending out animated cards that enticed recipients with the promise of nude photos attached;
* Parasitic file infector, Virut.A, wins the award for steepest climb up the chart, landing in fourth place from its 29th position in the previous edition of this report;
* MyTob and MyDoom families continue consistent activity with four variants in the Top Ten list.

"Activities in the last month showed the strength of the Pushdo botnet, which is a clear indicator that the socially-engineered mass e-card approach continues to gain traction," said Derek Manky, security research engineer for Fortinet. "Consumers should be reminded that legitimate e-cards are not generally sent as attachments, but rather as links to a hosting Web site. And as a rule of thumb, we should all avoid opening attachments from unsolicited emails."

Following are the Top Ten individual threats, Top Five threat families and Top Five threat prevalence for March. Pushdo's influence in all three lists was clearly evident. Top 100 shifts indicate positional changes compared to February's Top 100 ranking, with "new" representing the malware's debut in the Top 100.

Top Ten Individual Threats:.

1 W32/Pushdo.EV 13.5%.
2 W32/Netsky 9.5%.
3 HTML/Iframe_CID 6.5%.
4 W32/Virut.A 4.3%.
5 W32/MyTob.BH 1.9%.
6 W32/MyTob.FR@mm 1.9%.
7 W32/Bagle.DY@mm 1.7%.
8 W32/Mydoom.N@mm 1.6%.
9 W32/MyTob.fam@mm 1.5%.
10 W32/Istbar.PK 1.5%.

Netsky continues its leadership position among malware families, but fierce competition from Pushdo's Sunday activities closed the gap to less than one percent.

1 Netsky Mass mailer 14.5%
2 PushdoTrojan 13.7%
3 MyTobMass mailer 9.5%
4 VirutVirus 4.7%
5 MyDoom 3.6%

Thanks to Pushdo.EV, the Trojan family made up nearly one-third of all malware activities for the month.

1 Mass mailer 39.0
2 Trojan 32.2
3 Exploit 7.5
4 Spyware 5.0
5 Mobile 0.3

Bookmark and Share
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
   © 2012
Netgains Logo