Free Newsletter
Register for our Free Newsletters
Access Control
Deutsche Zone (German Zone)
Education, Training and Professional Services
Government Programmes
Guarding, Equipment and Enforcement
Industrial Computing Security
IT Security
Physical Security
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec

Fortinet issues threat profile for October.

Fortinet : 02 November, 2007  (Technical Article)
Adware toolbars and Trojans continue to top the threat hit list for October according to the FortiGate compiled October threat profile
Fortinet has announced the top 10 most reported high-risk threats for October 2007. The report, compiled from all FortiGate multi-threat security systems in production worldwide, is a service of Fortinet's FortiGuard Global Security Research Team.

October 2007's top 10 threats, as determined by the degree of prevalence are:.

1 HTML/Iframe_CID!exploit 7.83%.
2 W32/Netsky!similar 6.07%.
3 Adware/CashOn 6.01%.
4 W32/[email protected] 5.54%.
5 HTML/Clicker.AC!tr 4.58%.
6 W32/ANI07.A!exploit 4.30%.
7 HTML/Obscured!exploit 3.88%.
8 W32/[email protected] 3.78%.
9 W32/Grew.A!worm 2.99%.
10 W32/[email protected] 2.74%.

The October top 10 highlights the following:.

Two new threats joined the top ten list for the first time: the mass mailer MyTob.CJ (also known as MyDoom) reached the 10th position, up from last month's 65th spot; the Trojan Clicker.AC entered in fifth position, doubling its activity compared to last month with high spikes observed towards the end of October.

Netsky.P is still very active with the combination of Netsky.P and Netsky!similar (inclusive of
Netsky.P detection) representing the highest volume detected this month with 11.61 percent of the overall reported activity.

CashOn dropped from the top position last month to the third position this month. However, the adware toolbar plug-in remained prevalent with, once again, 99.70 percent of its activity focused in Korea.

Even though Fortinet threat researchers reported a general decrease in activity for mass mailing during the first half of the year, four mass mailers were ranked in the top ten this month, showing that this type of malware still accounts for a large portion of high-risk threats. In fact, in comparison to last month, the accumulated volume of Netsky.P, which includes Netsky!similar, has increased by 17.03 percent, while Bagle.DY showed a 13.46 percent surge in activity this month. But the most noticeable trend was the unprecedented activity volume of the MyTob.CJ variant, which was more than eight times greater than what was observed in September. MyTob.CJ ended October with a spike of activity and surpassed Bagle.DY for most of the month.

By definition, mass mailers use emails to spread, and therefore can easily end up in any individual's inbox. Most current mass mailers are multi-functional and can serve as gateways to expose private data or allow remote control of the system. As a result, they still represent a real threat for end users.

"Even if we observe an overall decrease, we continue to experience highly threatening activity from mass mailing and, once again, user education is key in this area," said Derek Manky, security research engineer at Fortinet. "When it comes to emails, end users should always first ask themselves if the message received was expected or if its source can be trusted before viewing the message and opening links or attachments. Also, in order to reduce the risk of having their computer compromised, they should make sure they have installed the latest operating system, browser, and application security updates. Finally, they should have antivirus scanning in place as an essential safeguard to mitigate those threats."
Bookmark and Share
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
   © 2012
Netgains Logo