Free Newsletter
Register for our Free Newsletters
Newsletter
Zones
Access Control
LeftNav
Alarms
LeftNav
Biometrics
LeftNav
Detection
LeftNav
Deutsche Zone (German Zone)
LeftNav
Education, Training and Professional Services
LeftNav
Government Programmes
LeftNav
Guarding, Equipment and Enforcement
LeftNav
Industrial Computing Security
LeftNav
IT Security
LeftNav
Physical Security
LeftNav
Surveillance
LeftNav
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
 
News

Spammers step up activities in February

Kaspersky Lab UK : 22 March, 2013  (Technical Article)
Online banking credentials at risk as cyber criminals step up activities with spam campaigns during the first quarter of the year
Spammers step up activities in February

After a lull of several months, spammers stepped up their activity in February. According to Kaspersky Lab data, the proportion of spam in email traffic grew by nearly 13 percentage points and averaged 71 per cent for the month, higher than the average for January and the last three months of 2012.

Italy was the country targeted most by malicious emails in February. The country’s share of mail antivirus detections grew by 9.4 percentage points and averaged 14.4 per cent, pushing long-term leader the US into second place.

Fake notifications from different financial organisations remain one of the most popular tools for distributing malware via email. This trick was especially popular in Italy where the spammers most often utilised Trojan-Banker.HTML.Agent.p which came second in February’s Top 10 malicious programs spread via email. This Trojan appears in the form of a HTML page imitating registration forms of well-known banks or e-pay systems which are used by phishers to steal users’ credentials for online banking systems.

One company name that is especially popular with the fraudsters is Google. In February, they launched a mass mailing that included the Google name notifying users that their resume was under consideration. To avoid any confusion, the recipient was encouraged to open the attached file to check their resume was correct. The attachment was a zip archive containing malware designed to steal passwords and other confidential data on the user’s computer.

There were major shifts in the geographical distribution of spam flows. In February, South Korea was the main source of spam sent to European users: the volume of junk email originating from that country grew 27.7 percentage points and averaged 50.9 per cent. Last month’s leader, China (3 per cent), fell to sixth place in February with a considerable drop of 36.6 percentage points. Such significant changes in the share of spam produced by these two countries may be due to the fact that a group of spammers started distributing from a different botnet.

In February, the US topped the rating of the leading sources of spam worldwide after the amount of spam sent from China halved, resulting in a drop to second place. The same as in January, South Korea was the thid largest source of spam worldwide.



“Such a dramatic increase in the amount of spam in February hardly marks the beginning of a new trend. It was most probably caused by a decline in the share of junk email during the January holidays when many of the computers used in botnets to distribute spam were turned off. Moreover, the proportion of unsolicited messages in February was still slightly lower when compared with the average for the whole of 2012. In any case, we don’t expect any more dramatic changes in the near future,” said Darya Gudkova, Head of Content Analysis & Research, Kaspersky Lab. “Of special concern right now is the fact that the majority of malicious attachments in spam are programs designed to steal users’ credentials for online banking systems. They appear in the form of HTML pages imitating registration forms. Users should be especially careful with such emails and the attachments should not be opened; online banking pages should only be accessed via a browser.”

Bookmark and Share
 
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
 
   © 2012 ProSecurityZone.com
Netgains Logo