Free Newsletter
Register for our Free Newsletters
Access Control
Deutsche Zone (German Zone)
Education, Training and Professional Services
Government Programmes
Guarding, Equipment and Enforcement
Industrial Computing Security
IT Security
Physical Security
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor

HTML Attachments Increase In Popularity For Malware Delivery Vehicle

Commtouch : 19 October, 2010  (Technical Article)
The Third Quarter Trend Report from Commtouch highlights the increasing use of HTML attachments to e-mails as the delivery mechanism for malicious payloads
Use of malicious HTML email attachments increased significantly in the third quarter, Commtouch has reported in its third quarter Internet Threats Trend Report. The HTML attachments displayed phishing pages on the user's local computer or redirected users to sites hosting malware or spam products.

The Q3 report examines the methodology within blended attacks, such as the "Here You Have" worm, which spread widely in September using Outlook contact lists from infected PCs. Both "Here You Have" and numerous fake LinkedIn invitations relied on a combination of social engineering and masked hyperlinks to lead users to websites with malware scripts.

During Q3, the PayPal, LinkedIn, CraigsList, Bell Canada, NewEgg and Amazon brands were used by spammers to inspire action by consumers. The report also features the unusual bedfellows of a pharmacy spam campaign based on solidarity with several European politicians and celebrities.

Commtouch's quarterly trend report reflects the results of its analysis of billions of Internet transactions daily within the company's cloud-based GlobalView Network. With the acquisition of the Command Antivirus division of Authentium (now known as SafeCentral), Commtouch also has added the malware analysis capabilities of the Command AV labs.

Other highlights from the Q3 Trend Report include:

* Spam levels averaged 88% of all email traffic throughout the quarter, peaking at over 95% in mid-September with 198 billion spam/phishing messages per day. By comparison, Q2 spam levels averaged 80% of all email, with 179 billion spam/phishing messages per day.

* Approximately 339,000 zombies were activated daily, almost 30,000 more per day than in the previous quarter.

* The most popular spam topic this quarter was pharmacy (59% of all spam).

* For the third quarter running, pornography/sexually explicit material is the website category most likely to include malware.

* India keeps its title for the second quarter in a row as the country with the most zombies - 14% of all zombies worldwide.

* Streaming media/downloads continues to be the most popular topic for blog creators in the Web 2.0 sphere of user-generated content.

"The increased use of HTML attachments shows how prominent the multi-stage attack vector has become," said Asaf Greiner, Commtouch vice president, products. "The blended nature of malicious activity further highlights the need for an integrated security offering that can block spam and malware emails, prevent users from visiting malicious Web sites and delete malware files and scripts."

Commtouch Recurrent Pattern Detection, GlobalView technologies and multi-layered Command Antivirus identify and block Internet security threats.
Bookmark and Share
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
   © 2012
Netgains Logo