Free Newsletter
Register for our Free Newsletters
Access Control
Deutsche Zone (German Zone)
Education, Training and Professional Services
Government Programmes
Guarding, Equipment and Enforcement
Industrial Computing Security
IT Security
Physical Security
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec

Sophos reports top 10 threats for July

Sophos : 01 August, 2007  (Technical Article)
Threat list dominated by web-based malware threatening to capture sensitive information from casual browsers rather than targetted e-mail groups.
Sophos, a world leader in IT security and control, has revealed the most prevalent malware threats causing problems for computer users around the world during July 2007.

The figures, compiled by Sophos's global network of monitoring stations, show a significant rise in the prevalence of the Mal/ObfJS family of web threats - up from just 1.8 percent last month to 17.3 percent this month. Despite this growth, Mal/ObjJS has not been able to dislodge Mal/Iframe from its number one position, accounting for more than half of all web threats seen by Sophos.

The top ten list of web-based malware threats in July 2007 reads as follows:.

1. Mal/Iframe 56.0%.
2. Mal/ObfJS 17.3%.
3. Troj/Psyme 10.4%.
4. Troj/Decdec 3.5%.
5. Troj/Fujif 1.9%.
6. Mal/Zlob 1.1%.
7. VBS/Edibara 0.9%.
8. Mal/Packer 0.8%.
9. Mal/Behav 0.4%.
10. VBS/Redlof 0.4%.

Other 7.3%.

Experts at SophosLabs note that the prominence of both threats in the top ten emphasises the popularity of the drive-by download technique with cybercriminals, as well as continued growth in the use of obfuscated Javascripts in compromising sites.

'The security dangers of the web still aren't fully registering with a great many businesses - this is providing rich pickings for hackers hell-bent on gaining access to sensitive information,' said Carole Theriault, senior security consultant at Sophos. 'It's no surprise to see legitimate webpages targeted for these attacks - businesses generally aren't too strict about stopping their employees accessing these websites, while the sites themselves will already have their own daily flow of user traffic, saving hackers the trouble of trying to entice unenlightened web surfers.'

The top ten list of countries hosting malware-infected web pages in July 2007, reads as follows:.

1. China (inc. Hong Kong) 49.8%.
2. United States 21.8%.
3. Russia 14.7%.
4. Ukraine 3.2%.
5. Germany 1.2%.
6. Brazil 1.0%.
7. United Kingdom 0.8%.
8. Taiwan 0.8%.
9. Canada 0.6%.
10. Poland 0.6%.

Other 5.5%.

China has again retained its position as the primary nation responsible for hosting malware-infected web pages. Interestingly, the number of pages hosted by Russia has increased substantially since June 2007, where it stood at just 3.5 percent. This can be explained by the large number of Mal/Iframe- and Mal/ObfJS-infected webpages in Russia that have been compromised to service as drive-by sites.

'Last month Italy made the top ten - now it has disappeared and Russia is the main nation on the rise,' continued Theriault. 'It's important for countries to recognise that hackers don't have preferred locations for malware-hosting. They'll target any vulnerable web hosts that they can find, irrespective of country, meaning that no nation is immune to the threat. The only way for businesses to mitigate against the danger is by deploying up-to-date security solutions and ensuring that internet users don't jeopardise their networks through irresponsible online behaviour.

The top ten list of email-based malware threats in July 2007 reads as follows:.

1. W32/Netsky 27.2%.
2. W32/Mytob 18.3%.
3. W32/Zafi 12.4%.
4. Mal/Iframe 9.8%.
5. W32/MyDoom 5.6%.
6. W32/Sality 4.1%.
7. Troj/Agent 3.8%.
8. W32/Bagle 3.4%.
9. Mal/Clagger 3.4%.
10. W32/Strati 1.7%.

Other 10.3%.

Bookmark and Share
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
   © 2012
Netgains Logo