RSS Alerts

Share

More services

Related Links

Related Stories

  • Adobe warns of critical multi-platform security flaw
    Adobe has released a major warning over a critical vulnerability in its Flash Player 10.0.45.2 and earlier editions for Windows, Apple Mac, Linux and Solaris platforms.
  • Applications under attack says Microsoft, Adobe
    Many in the security field agree that attack vectors have rapidly moved from exploiting operating system vulnerabilities to the application layer. Security specialists from Microsoft and Adobe lent their opinions as to why this is the case.
  • X-Force: Document vulnerabilities on the rise
    Adobe's PDF document format continued to take a bashing this week, after a report from IBM's X-Force security consulting arm singled out readers supporting the software company's de facto standard document format as a particular security worry.
  • Internet Explorer vulnerability used in Google attack
    More details are emerging concerning the concerted attacks on over 20 technology companies, including Google, that were revealed earlier this week. The attackers targeted a vulnerability in Internet Explorer, according to Microsoft. It is now investigating the flaw, which could allow attackers to execute arbitrary code.
  • Sophisticated zero-day hits Adobe Reader
    More details are emerging of a zero-day attack on Adobe's PDF reader and Acrobat applications, and security experts are calling it highly sophisticated. Moreover, anti-malware tools have been woefully poor at spotting it.

Top 5 Stories

News

Kaspersky details Q1 information security threats

07 June 2010

Nearly half of all information security threats came from Adobe application exploits over the first quarter of 2010 according to the most recent quarterly analysis from security vendor Kaspersky.

Attacks have risen, detected vulnerabilities have increased, and the overwhelming majority of these security threats target Microsoft and Adobe products says the latest quarterly threat report from Kaspersky.

The Q1 Information Security Threats report showed that the 10 most common malware families detected by the company made up slightly more than half of all internet malware, with the Iframer family coming in at number one with 15.90% of detections, followed by Generic (7.28%) and Hexzone (4.57%).

The security firm also found that although the speed at which patches for security vulnerabilities are issued has quickened in pace, so too has the proliferation of new-found security breaches. Kaspersky’s analysis revealed that nine of the top 10 unpatched vulnerabilities involved either Microsoft of Adobe products, with one dating back to 2008.

“The problem is that in between Patch Tuesdays, hackers can exploit new vulnerabilities safe in the knowledge that they will work swimmingly on most computers before the next round of patches are released”, said the report. The report also ads that Adobe’s products run on multiple platforms, and being that the company’s products are near ubiquitous on personal and enterprise machines, they make perhaps the most tantalizing target for virus writers.

The primary exploit for the first quarter of 2010 took advantage of security flaws in Adobe’s PDF readers, as Kaspersky’s data show that 47.5% of all detected exploits fell into this area.

Regional analysis showed the US reclaimed the top spot as the location serving the most malicious programs, followed by Russia (22.59%) and China. “In recent years, China has become a veritable malware factory, churning out huge amounts of malicious code”, said Yury Namestnikov, the report’s author. In Q1 of 2009, 32.80% of all detected malware was hosted on servers in China, but this number declined precipitously to 12.84% in the first quarter of 2010.

Namestnikov credits the Chinese government’s December 2009 policy – which tightened up registration requirements in the .cn domain – as the primary factor for the decrease in malware being hosted by servers in China.

“We can only hope that the measures introduced on 1 April, 2010 governing the registration of Russia’s ‘.ru’ domain, which require the provision of documents to substantiate the requesting parties’ identity, will have the same effect as in China and that malware will migrate from Russian servers”, he added.

This article is featured in:
Application Security • Internet and Network Security • Malware and Hardware Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012