Free Newsletter
Register for our Free Newsletters
Newsletter
Zones
Access Control
LeftNav
Alarms
LeftNav
Biometrics
LeftNav
Detection
LeftNav
Deutsche Zone (German Zone)
LeftNav
Education, Training and Professional Services
LeftNav
Government Programmes
LeftNav
Guarding, Equipment and Enforcement
LeftNav
Industrial Computing Security
LeftNav
IT Security
LeftNav
Physical Security
LeftNav
Surveillance
LeftNav
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
 
News

January e-threats feature Autorun and JavaScript as main risks

BitDefender UK : 03 February, 2010  (Technical Article)
BitDefender's e-threat report for January demonstrates dominance of JavaScript and Autorun files as being the predominant sources of computer infections
Computer users' growing demands for online interaction exposes them to all sorts of malicious software. Currently the most common threats are to be found on file sharing websites such as torrent portals, "warez" communities and other services hosting pirated content.

Trojan.Clicker.CM ranks first in BitDefender's top five e-threats for January. This Trojan is in fact a small script forcing advertisements inside the users' browser. While some of the advertisements are related to free online games, others may expose the computer user to hardcore pornography or other types of inappropriate content.

In second place is Trojan.AutorunInf.Gen, a generic mechanism to spread malware using removable devices such as flash drives, memory cards or external hard-disk drives. Win32.Worm.Downadup and Worm.Zimuse are two of the most famous families of malware to use this approach to infect other systems.

Great attention should therefore be paid to the use of such external devices, warns Catalin Cosoi, BitDefender's senior antispam researcher.

"Whilst they may be a convenient way to transfer data, memory sticks might easily harm the computer if used carelessly. Libraries, copy shops and other public hotspots are usually the most notorious sources of infection."

Ranking third in this month's e-threat report is Win32.Worm.Downadup.Gen. Exploiting the Microsoft Windows Server Service RPC Handling Remote Code Execution Vulnerability (MS08-67), this worm spreads on other computers in the local network and restricts users' access to Windows Update and security vendors' web pages.

According to BitDefender, newer variants of the worm also install rogue antivirus applications, among others. The worm's persistence after more than one year since its original appearance reveals that most users are reluctant to updating both the operating system and their locally-installed antimalware solution.

Exploit.PDF-JS.Gen comes in fourth place. This generic detection deals with malformed PDF files exploiting different vulnerabilities found in Adobe PDF Reader's Javascript engine in order to execute malicious code on a user's computer. Upon opening an infected PDF file, a specially crafted Javascript code triggers the download and automatic execution of malicious binaries from remote locations.

Ranking fifth is Trojan.Wimad.Gen.1. This Trojan is mostly found on torrent websites disguised as an episode of a popular television series that has not yet been aired. These fake video files are able to connect to a specific URL and download malware posing as the appropriate codec required for playing the file. Trojan.Wimad.Gen.1 is particularly active when box-office titles are expected to appear on file-sharing websites.

BitDefender's January 2010 top ten e-threat list includes:

1 Trojan.Clicker.CM 8.30
2 Trojan.AutorunINF.Gen 8.17
3 Win32.Worm.Downadup.Gen 6.18
4 Exploit.PDF-JS.Gen 5.76
5 Trojan.Wimad.Gen.1 4.30
6 Win32.Sality.OG 2.73
7 Trojan.Autorun.AET 2.01
8 Worm.Autorun.VHG 1.69
9 Trojan.Script.254568 1.40
10 Trojan.JS.QAF 1.40
OTHERS 58.01


To stay up-to-date on the latest e-threats, sign-up for BitDefender's RSS feeds.

BitDefender will be participating at Infosecurity Europe 2010, the No. 1 industry event in Europe held on 27th - 29th April in its new venue Earl's Court, London. The event provides an unrivalled free education programme, exhibitors showcasing new and emerging technologies and offering practical and professional expertise.

Bookmark and Share
 
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
 
   © 2012 ProSecurityZone.com
Netgains Logo