RSS Alerts

Related Links

Related Stories

  • What’s in store for 2010?
    The Noughties are behind us now, but memories of a decade of data breaches will continue to haunt the infosec professional. If only there was a way of knowing what the threat landscape would look like in the months to come. Well you’re in luck as Davey Winder has dusted off the crystal ball and spoken to a broad church of infosec professionals to get some informed predictions for 2010
  • CA identifies fakeware, search engines and social networks as major information security threats of 2009
    In its year-end report on the state of IT security, Computer Associates (CA) has noted that fake security software (fakeware), poisoned search engine results and social networking sites such as Bebo, Facebook and Myspace, were the major information security threats of 2009.
  • Spamming the socially active - spam diversifies to Twitter, IM, SMS, etc
    Once poison found only in email accounts, spam is now polluting every form of electronic communication from IM to SMS and from blogs to tweets. But how well is it doing outside its natural domain? William Knight takes a look at non-email spam
  • Number of malicious websites up 233% in H1 2009
    The Websense Security Labs report on the state of internet security for the first half of 2009, has found that the number of malicious websites has increased 233% over the last six months, and 671% over the last year.
  • Advice for safer access to Facebook, Twitter, and other social networking sites
    As many readers of Infosecurity may have noticed, Web 2.0-driven social networking sites like Facebook and Twitter have become attractive targets for phishing and scamming attacks as online criminals follow the latest internet trends that are attracting the most users.

News

Conficker and Facebook / Twitter attacks dominate Q1 email threats

05 May 2009

The Conficker worm and attackers’ social engineering techniques exploiting users on Facebook, Myspace and Twitter, dominated the email threats in the first quarter (Q1) of 2009, according to identity-based unified threat management (UTM) solutions provider Cyberoam and its Israeli messaging and web security partner Commtouch.

Abhilash Sonwane, vice-president product management at Cyberoam headquartered in Ahmedabad, India, said: “Attackers have confirmed once more that they work on both sides of the equation – user and the platform. They plan on the emotions of users while exploiting loopholes on the platform being used. Used in combination, it is an effective way to propagate malware.”

Top 10 web categories infected with malware:
  • Pornography & sexually explicit
  • Computers & technology
  • Streaming media & downloads
  • Business
  • Search engines and portals
  • Criminal activity
  • Shopping
  • Health & medicine
  • Job search
  • Education

Sophisticating their social engineering techniques using fear, emotion and security loopholes to perpetuate attacks, spammers tricked users on Facebook, Myspace and Twitter into divulging personal information, according to Cyberoam.

At the end of 2008, spammers sent wall posts claiming that scandalous pictures of individuals had surfaced on e.g. Facebook, while in Q1 2009, they posted desperate messages from ‘friends’ saying they were in a financial bind. However, the link posted took Facebook users to an imposter site collecting usernames and passwords.

Top 10 web categories manipulated by phising:
  • Health & medicine
  • Web-based email
  • Finance
  • Computers & technology
  • Chat
  • Search engines & portals
  • Social networking
  • Personal sites
  • Download sites
  • Politics

On Twitter, spammers sent direct messages to users of blog posts and funny photos related to them. They exploited security loopholes on Twitter such as the use of TinyURLs to fit Twitter’s 140 character limit, meaning users did not know where the link led before clicking, Cyberoam said.

The highlights of the Q1 Email Threat Trend Report from Cyberoam and Commtouch were:

  • The Conficker worm infected more than 15m computers since it appeared last autumn;

  • Loan spam jumped to the top of the list of spam topics with 28% in Q1;

  • Users of social networking sites fell victim to new, more complex phising attacks;

  • Computers/technology sites and search engines/portals are among the top 10 web site categories infected with malware and/or manipulated by phising;

  • Brazil continues to lead in zombie computer activity, producing nearly 14% of zombies for the quarter;

  • Spam levels averaged 72% of all email traffic throughout Q1 and peaked at 96% in early January before bottoming out at 65% in February. Spammers attacked large groups of a single ISP’s users before moving onto the next ISP;

  • An average of 302 000 zombies were activated each day for the purpose of malicious activity.

 

 

This article is featured in:
Internet and Network Security Malware and Hardware Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Copyright © 2010
Elsevier Ltd. All rights reserved.
Terms & Conditions | Privacy | Website Design Working with water