Author: admini

As businesses and home users have become increasingly savvy about traditional threats delivered via e-mail attachments, criminals are finding new ways to lure end users to consume their attacks, according to the report.

Researchers specifically cited a growth in the number of threats that use spam e-mail messages or IMs to distribute links to Web sites where malware or spyware is secretly downloaded to end users’ computers.

Criminals are also using data garnered from PCs already infected with their botnet virus code to refine their other spam and spyware efforts, said Paul Wood, senior analyst with New York-based MessageLabs. The attack uses a phishing e-mail in an attempt to persuade PayPal customers to call a phony customer service call center where they are asked to disclose personal information including their credit card details by an automated voice system. Using other common forms of converged attacks, criminals are creating Web sites that distribute small “dropper” malware files that secretly infiltrate PCs and later deliver larger Trojan viruses.

Botnet operators are also becoming more sophisticated, using spyware loaded onto the machines they control to garner personal information that can be used to help target other attacks, MessageLabs said.

http://www.eweek.com/article2/0,1759,1985999,00.asp?kc=EWRSS03119TX1K0000594

The malware writers are trying to keep the vendors busy while they target malware attacks, such as specific threats sent to specific users for theft purposes, she added.

“Figures may vary from one company and other, of course, but undoubtedly the Trojan hordes, due to their capability to steal passwords, give the creators the chance of stealing money,” Panda Software Labs’ Sanabria said.

The stats arrive at a time when the “classical” viruses (file virus, macro virus, etc) are considered almost dead by firms such as Panda. Ron O’Brien, senior security analyst at Sophos, explained to internetnews.com that the Mac statement was made in the context of whether the end user is committed to the effort or time to manage and maintain a safe and protected Windows environment.

“The introduction of new security measures, including some planned for Vista, may slow down the rate at which machines are impacted by malware, O’Brien said. Microsoft, for its part, said it believes Windows customers are becoming increasingly more secure, thanks in part to Microsoft’s Malicious Software Removal Tool (MSRT). Microsoft claims in a recent report that since it released MSRT, over 270 million unique computers ran the tool for about 2.7 billion executions of the removal tool.

“It’s important to remember that no software is 100 percent secure,” a Microsoft spokesperson told internetnews.com.

http://www.internetnews.com/security/article.php/3618381

The report tracks annual VPN service revenue by service type, technology, remote access vs. site-to-site, intranet vs. extranet, and organization size, and tracks security services by service type and organization size.

http://www.infonetics.com/resources/purple.shtml?ms06.vs.nr.shtml
http://www.darkreading.com/document.asp?doc_id=98632&WT.svl=wire_2

“This is by no means a victory for the security industry over malware writers”, said James Kay, chief technology officer at BlackSpider. “What we are actually seeing is a switch in virus distribution tactics rather than a drop in viruses,” he said.

It’s more of an evolution than a new wave in internet crime,” said Thomas Raschke, senior analyst at Forrester Research.

http://www.pcauthority.com.au/news.aspx?CIaNID=34514