2 April 2007
Old-timers top malware chart but web-based threats pose greater problems
Sophos announces top ten threats and hoaxes reported in March 2007
Sophos, a world leader in IT security and control, has revealed the most prevalent malware threats and email hoaxes causing problems for computer users around the world during March 2007.
The figures, compiled by Sophos's global network of monitoring stations, show that the Netsky family has had the biggest impact on computer users this month, accounting for almost a third of all malware seen during March.
Netsky's return to the top comes despite protection against this family of worms having been available for more than three years. Interestingly, just 0.18 percent or one in 555 emails was infected in March, yet Sophos detected 8,835 new threats, bringing the total protected against to 231,548. These numbers indicate that while malware spreading via email is still causing trouble, the vectors used to distribute threats are changing: hackers are continuing their move away from mass-mailing worms in favour of using spam messages with links pointing to infected webpages.
The top ten list of malware threats in March 2007 reads as follows:
"Unwanted emails hiding copies of Netsky are still spreading like weeds in an untended garden, showing how well seeded these mass-mailing threats are," said Carole Theriault, senior security consultant at Sophos. "It's frustrating to think that there are a bunch of new threats out there that are much more targeted and devious in their approach, yet how can we expect the average computer user to protect against them when the Netskys and Mytobs remain so rooted? Users need to roll up their sleeves and commit to keeping their PCs secure both for their sake and the sake of everyone else connected to the web."
Sophos's global network of monitoring stations has also revealed that the UK has jumped into the top five countries hosting malware-infected webpages.
The top ten list of countries hosting malware-infected websites in
March 2007, reads as follows:
| Position |
Countries |
Percentage of reports |
| 1 | China (incl Hong Kong) |
|
| 2 | United States |
|
| 3 | Germany |
|
| 4 | United Kingdom |
|
| 5 | Russia |
|
| 6 | France |
|
| 7 | Netherlands |
|
| 8 | South Korea |
|
| 9= | Ukraine |
|
| 9= | Canada |
|
| Others | 6.4% |
"Since December 2006, we have seen some remarkable changes in the countries hosting the most malware," continued Theriault. "China has taken the lead from the United States, but more dramatically, the United Kingdom, which hosted less than 1 percent in December is now responsible for more than 5 percent. This significant increase should be a warning to those hosting websites in the UK to ensure that they have patched against vulnerabilities that might be lurking on their site."
The top ten hoaxes and chain letters in March were as follows:
Graphics of the above top ten malware chart are available.
The Sophos Security Threat Report 2007, which discusses 2006's most prevalent
families of malware and malware hosting countries in more detail, can be
downloaded from the Sophos website:
- USA number 1 for malware and spam
- Huge surge in email attachment attacks
- Scareware makes users buy bogus products
About Sophos
Sophos enables enterprises all over the world to secure and control their IT infrastructure. Sophos's network access control, endpoint, web and email solutions simplify security to provide integrated defenses against malware, spyware, intrusions, unwanted applications, spam, policy abuse, data leakage and compliance drift. With over 20 years of experience, Sophos protects over 100 million users in nearly 150 countries with its reliably engineered security
solutions and services. Recognized for its high level of customer satisfaction and powerful yet easy-to-use solutions, Sophos has received many industry awards, as well as positive reviews and certifications.
Sophos is headquartered in Boston, US and Oxford, UK. More information is available at www.sophos.com
See also:
Security news
Security news
Download now
