Free Newsletter
Register for our Free Newsletters
Access Control
Deutsche Zone (German Zone)
Education, Training and Professional Services
Government Programmes
Guarding, Equipment and Enforcement
Industrial Computing Security
IT Security
Physical Security
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec

April swamped with new IT security threats

ESET : 11 May, 2007  (Technical Article)
ESET research shows increase in new malicious software during April after a stable period.
ESET has announced that unlike the fairly broad threat profile for March, April showed renewed vigour among new threats, with the top five representing nearly 14% of all threat activity for the month.

Into first place charged Win32/TrojanDownloader.Ani.Gen, which exploits how Windows handles animated cursor (.ani) files. During the month of April, close to 5% of all detections were of the Ani.Gen threat, as malware writers made the most of this latest vulnerability in the operating system.

"This type of attack exposes even fairly sophisticated users to "drive by" attacks that can compromise their computers," said Randy Abrams, Director of Education ESET in a recent blog entry. "For web browsing, the use of virtualization technologies such as SandboxIE can afford some protection, but email still remains a potential attack vector. Although, forcing Outlook to render email in plain text is a mitigating tactic, Outlook Express will remain vulnerable to attack, even when configured to render email in plain text."

Win32/PSW.Agent.NCC, dropped from first place last month to second, account for 2.85% of detections during April. This trojan is part of a family used for stealing passwords through keylogging techniques. In third place is Win32/Pacex.Gen, a remarkably fast spreading mass-mailing worm discovered during March.

Win32/TrojanDownloader.Agent.AWF was fourth in April, with around 1.80 of detections. This threat is used for downloading other malware from web sites to create botnets that are then used for propagating spam and delivering DDOS attacks. The fifth place on the ranking for April was held by Win32/Perlovga, a trojan that has increased its presence during the current year. Moving up from seventh place last month, this threat can be received by users from different sources, like email, FTP or P2P applications. Perlovga is used to collect sensitive information from infected computers.

Top 10 Threats for April 2007

1 Win32/TrojanDownloader.Ani.Gen - 4.95%.
2 Win32/PSW.Agent.NCC - 2.85%.
3 Win32/Pacex.Gen - 2.21%.
4 TrojanDownloader.Agent.AWF- 1.80%.
5 Win32/Perlovga - 1.45%.
6 Win32/Adware.Boran - 1.30%.
7 Win32/PSW.QQRob - 1.27%.
8 Win32/Nuwar.gen - 1.18%.
9 Win32/Netsky.Q - 1.17%.
10 Win32/Adware.Virtumode - 1.14%.

Bookmark and Share
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
   © 2012
Netgains Logo