All the latest UK technology news, reviews and analysis
|
|
|
02 May 2006
Early reports of malware distribution in April show that viruses are swiftly declining as a threat in comparison with other malicious software.
Separate research from Fortinet and Sophos shows that the top viruses were mainly old timers, and that Trojans and spyware are coming to the fore in their place.
Fortinet in particular reported that Adware/BetterInternet was its top threat last month, accounting for nearly one in eight attacks.
"While email worms occupy the top spots, it's clear that Trojans represent by far the most prominent threat to IT security," said Carole Theriault, senior security consultant at Sophos.
"Trojans are constantly being fine-tuned by hackers to catch out specific targets. As they are likely to be more difficult to identify, there's a danger that more individuals will make the mistake of clicking on an unsolicited attachment or a dubious weblink."
Netsky is still the most common virus seen online, accounting for about one in five of all viruses despite a fix and removal tools being widely available for more than two years.
"It's astonishing that Netsky-P is still going strong 25 months on. Users with insufficient malware protection must take the brunt of the blame for giving it this continued lease of life," said Theriault.
But despite the warnings, it seems that worms that use instant messaging have yet to take off.
"The expected reign of IM worms has not arrived because virus authors are confronted with a fundamental barrier when engineering an IM worm," stated Fortinet's report.
"While email addresses are easy to collect on the web, instant messaging IDs are generally less public, making the seeding process significantly harder to set up.
"Furthermore, an IM worm's social engineering effectiveness strongly relies on the fact that people are more likely to accept a transfer originating from one of their contacts than from a stranger, so the initial infected messages must come from existing, real users."
However, Fortinet warned that it has seen the first phishing website trying to steal IM details, in this case for MSN Messenger. The site promises a free utility for registered uses but exists solely to collect IDs and passwords.
Latest stories from Security
Related articles
Related jobs
Poll
What is the most important IT priority for your company this year?
Sneak peek at the forthcoming glass-based machine
Connect with V3.co.uk
This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes
Why good data management at all levels is essential in the modern business (video, 6mins)
Support Engineer - Cisco - LINUX - ISP - NOC - £30-40k...
Netapp Storage Engineer - NCDA - NCIE - Unix/ Linux Skills...
Cisco ISP Pre-sales consultant - CCNA - CCNP - CCIE...
Netapp Storage Engineer - NCDA - NCIE - Unix/ Linux Skills...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?
Its what you cant see....
Its not the malware that can be detected but more the malware that is hidden via Rootkits that will become more prevalent in the coming years. antirootkit.com has a lot of links for finding rootkits on your PC. There are a few products for indentifying and removing rootkits but none useful to the people who are not tech savvy. The coming years should be interesting.
Posted by: Sim 04 May 2006
What is a virus again?
I would like to point something out here. The last virus (With the definition of Computer Virus being code that is inserted into another program) to make the top 10 of Sophos' own list was Elkern-C in 2002. NetSky et al are either Trojans or Worms. Interesting how Sophos cannot use their own logic to determine this! Virii have ceased to be profitable compared to worms, trojans and spyware back in 2004 at least so this report is surprising to me.
Posted by: Des Ward 03 May 2006