RSS Alerts

Share

More services

Related Links

Related Stories

  • Conficker still a threat, says Working Group
    The Conficker worm continues to be a threat and businesses need to be aware of two vulnerabilities it may have introduced to their IT systems, says an industry group set up to combat the malware.
  • Greater Manchester Police hit by Conficker
    The continuing problem of staff popping infected USB sticks `from home' into their office PCs has reportedly hit Greater Manchester Police with a full-blown Conficker worm infection.
  • Comment: Thoughts from a security researcher on Conficker
    Patrick Runald, senior threat research manager at Websense Security Labs shares his thoughts on Conficker as the worm reaches its first anniversary of appearing in the wild.
  • Conficker's first birthday looms - seven million IPs still infected
    As Conficker approaches the first anniversary of its appearance in the wild, the Shadowserver Foundation says that at least seven million IP addresses - each representing one or more computers - are now infected by the worm.
  • Conficker and Facebook / Twitter attacks dominate Q1 email threats
    The Conficker worm and attackers’ social engineering techniques exploiting users on Facebook, Myspace and Twitter, dominated the email threats in the first quarter (Q1) of 2009, according to identity-based unified threat management (UTM) solutions provider Cyberoam and its Israeli messaging and web security partner Commtouch.

Top 5 Stories

News

Conficker hits security charts in June

07 July 2010

The June malware charts from Sunbelt Software show that Conficker has surfaced once again as a security threat, largely as a result of internet users visiting untrusted sites looking for World Cup video streams, says the IT security specialist.

In parallel with this, Sunbelt reports a surge in password-stealing trojans and media player threats during the month.

Most significant in June, says the firm, was a surge in detections of Trojan-Spy.Win32.Zbot.gen, a growing family of password-stealing Trojan horse programmes, which moved up from fifth place in May to second in June as a result.

On the Conficker front, like the original strain, the new Downadup variant is said to spread across a network by taking advantage of vulnerability in the Windows Server service, which allows remote code execution when file sharing is enabled.

According to the report, this particular variant of Downadup also spreads through removable drives and takes advantage of weak administrator passwords to turn off some system services and anti-malcode protection.

Tom Kelchner, Sunbelt's research manager, said that, although trojans continue to dominate the top 10, June reveals interesting trends such as a fresh wave of Conficker-based detections, suggesting that this troublesome piece of malware is on its way back.

"As we expected, malware related to the distribution and downloading of media files is also on the increase, as highlighted by the appearance of Trojan.ASF.Wimad in the top 10 for June, coinciding with the start of the FIFA World Cup", he said.

"With many of the World Cup matches taking place during work hours when users have no access to a TV, the temptation to seek out online streaming services, be they from trusted or untrusted sources, has been too strong for some users", he added.

Kelchner went on to say that, in order to avoid unnecessary malware risks, it is essential to keep clear of unknown and unproven sites offering audio and video streaming.

This article is featured in:
Application Security • Malware and Hardware Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012