RSS Alerts

Share

More services

Related Links

  • Commtouch
  • Cyberoam
  • Elsevier Ltd is not responsible for the content of external websites.

Related Stories

  • Cutwail botnet resurfaces in major Facebook scam-paign
    An M86 Software researcher says his team has seen a major malicious spam campaign that is using the Cutwail botnet to bombard Facebook users with a variety of infected messages.
  • US in pole position in the global spam charts
    The latest quarterly spam report from Sophos shows that the US is firmly in pole position in terms of spam generation, despite cybercriminals changing their infection tactics.
  • US identified as worst offender for relaying spam
    Information security vendor Sophos has published a report ranking the ‘Dirty Dozen’ spam-relaying countries over the third quarter of 2010, establishing the United States as the country responsible for nearly one in five junk emails.
  • What’s in store for 2010?
    The Noughties are behind us now, but memories of a decade of data breaches will continue to haunt the infosec professional. If only there was a way of knowing what the threat landscape would look like in the months to come. Well you’re in luck as Davey Winder has dusted off the crystal ball and spoken to a broad church of infosec professionals to get some informed predictions for 2010
  • CA identifies fakeware, search engines and social networks as major information security threats of 2009
    In its year-end report on the state of IT security, Computer Associates (CA) has noted that fake security software (fakeware), poisoned search engine results and social networking sites such as Bebo, Facebook and Myspace, were the major information security threats of 2009.

Top 5 Stories

News

Conficker and Facebook / Twitter attacks dominate Q1 email threats

05 May 2009

The Conficker worm and attackers’ social engineering techniques exploiting users on Facebook, Myspace and Twitter, dominated the email threats in the first quarter (Q1) of 2009, according to identity-based unified threat management (UTM) solutions provider Cyberoam and its Israeli messaging and web security partner Commtouch.

Abhilash Sonwane, vice-president product management at Cyberoam headquartered in Ahmedabad, India, said: “Attackers have confirmed once more that they work on both sides of the equation – user and the platform. They plan on the emotions of users while exploiting loopholes on the platform being used. Used in combination, it is an effective way to propagate malware.”

Top 10 web categories infected with malware:

  • Pornography & sexually explicit
  • Computers & technology
  • Streaming media & downloads
  • Business
  • Search engines and portals
  • Criminal activity
  • Shopping
  • Health & medicine
  • Job search
  • Education

Sophisticating their social engineering techniques using fear, emotion and security loopholes to perpetuate attacks, spammers tricked users on Facebook, Myspace and Twitter into divulging personal information, according to Cyberoam.

At the end of 2008, spammers sent wall posts claiming that scandalous pictures of individuals had surfaced on e.g. Facebook, while in Q1 2009, they posted desperate messages from ‘friends’ saying they were in a financial bind. However, the link posted took Facebook users to an imposter site collecting usernames and passwords.

Top 10 web categories manipulated by phising:
  • Health & medicine
  • Web-based email
  • Finance
  • Computers & technology
  • Chat
  • Search engines & portals
  • Social networking
  • Personal sites
  • Download sites
  • Politics

On Twitter, spammers sent direct messages to users of blog posts and funny photos related to them. They exploited security loopholes on Twitter such as the use of TinyURLs to fit Twitter’s 140 character limit, meaning users did not know where the link led before clicking, Cyberoam said.

The highlights of the Q1 Email Threat Trend Report from Cyberoam and Commtouch were:

  • The Conficker worm infected more than 15m computers since it appeared last autumn;

  • Loan spam jumped to the top of the list of spam topics with 28% in Q1;

  • Users of social networking sites fell victim to new, more complex phising attacks;

  • Computers/technology sites and search engines/portals are among the top 10 web site categories infected with malware and/or manipulated by phising;

  • Brazil continues to lead in zombie computer activity, producing nearly 14% of zombies for the quarter;

  • Spam levels averaged 72% of all email traffic throughout Q1 and peaked at 96% in early January before bottoming out at 65% in February. Spammers attacked large groups of a single ISP’s users before moving onto the next ISP;

  • An average of 302 000 zombies were activated each day for the purpose of malicious activity.

 

This article is featured in:
Internet and Network Security • Malware and Hardware Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012