Share

Related Links

  • GFI Software
  • Reed Exhibitions Ltd is not responsible for the content of external websites.

Related Stories

  • GFI offers lifetime subscription version of IT security software
    GFI Software has launched a no-annual subscription version of its Vipre IT security software, effectively doing away with the annual subscription approach that most of its rivals operate with their pay-for packages.
  • Trojans soaring in volume
    The latest monthly analysis of malware from GFI Software claims to show that trojans are increasing rapidly in volume, as witnessed by the level of infections caused by the ZeuS worm in recent weeks, Infosecurity notes.
  • Trojan activity rampant during August
    Research just published by GFI Software claims that internet users were under attack throughout August, mainly by the same Trojan horse programmes that have persisted for several months.
  • Trojans suspected of contributing to 2008 Madrid aircrash
    Reports are coming in that a Spanair plane crash in 2008, in which 154 people died, may have been caused by trojans and similar malware. If true, this could be one of the first links to malware causing a major loss of life.
  • July saw a surge in trojans says Sunbelt Software
    July research into internet-borne malware claims that users were under attack throughout July, mainly by trojans and the Conficker worm.

Top 5 Stories

News

Password-stealing trojans and targeted attacks the norm in November

08 December 2010

Research published today claims to show that password-stealing trojans and targeted attacks on unpatched software were pretty much the attack vectors used in the main by cybercrminals during November.

In its monthly 'top 10 malware threats' report for November, GFI Software says that trojans dominated the threat landscape during the month, with no less than seven of the top 10 malware threats being classified as trojans.

The number-one detection – Trojan.Win32.Generic!BT – is a trojan that accounts for more than 20% of the firm's detections.

Commenting on the report, Tom Kelchner, GFI's research analyst, said that there is another picture emerging from the top 10 list this month.

Three of the malware attacks, he says, go after applications or server software that has not been patched.

"The number six detection, Exploit.PDF-JS.Gen, tries to exploit a security flaw in PDF files with embedded JavaScript. That's aiming at Adobe products. It often installs downloaders that pull down other malware from remote Web sites", he said.

According to the report, Worm.Win32.Downad.Gen – aka the Downadup worm – is in seventh slot, whilst Trojan.ASF.Wimad in ninth spot, is a detection for a group of trojan Windows media files that exploit a known vulnerability in Windows Media Player. It redirects the victims browser to a website to download malicious files.

Kelchner said that if this malware is still circulating, it means that the malcode writers are seeing a landscape with lots of unpatched and vulnerable machines.

"The conclusion is pretty clear for both enterprises and consumers: update Windows operating systems (including servers), browsers, Adobe products and media players and keep them updated", he noted.

This article is featured in:
Malware and Hardware Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

We use cookies to operate this website and to improve its usability. Full details of what cookies are, why we use them and how you can manage them can be found by reading our Privacy & Cookies page. Please note that by using this site you are consenting to the use of cookies. ×