Categories: SecurityWorkspace

Security Vendor Reports Sharp Rise In Malware

According to Panda Security, 20 million new strains of malware have already been created this year – the same total as in all of 2009. The shortened lifespan of the malware combined with the increased number of variants demonstrate a shift in the cyber-crime landscape, where many variants are now being created to infect a small number of systems before they disappear, the vendor said.

“Since 2003, new threats have increased at a rate of 100 percent or more,” said Luis Corrons, technical director of PandaLabs, the company’s research arm, in a statement. “Yet so far in 2010, purely new malware has increased by only 50 percent, significantly less than the historical norm.”

Expanding range of threats

“This doesn’t mean that there are fewer threats or that the cyber-crime market is shrinking,” he said. “On the contrary, it continues to expand, and by the end of 2010 we will have logged more new threats in Collective Intelligence than in 2009. It seems hackers are applying economies of scale, reusing old malicious code or prioritising the distribution of existing threats over the creation of new ones.”

The average number of new threats created each day has reached 63,000 to date, the company said, a figure roughly the same as what was reported in recent research from McAfee.

Panda also found however that the average lifespan of 54 percent of malware has been cut to just 24 hours. Thirty-four percent of all active malware threats were created this year, the company said.

Some of those threats are undoubtedly infecting users via malicious websites promoted through black hat search engine optimisation (SEO) efforts. A report by CyberDefender Research Labs noted keyword combinations such as ‘Thanksgiving Lunch Invitations’, ‘Thanksgiving Invitation Template’ and ‘Thanksgiving Printable Invitations’ were drawing malicious results.

Out of 50 search results for each of the three terms, roughly 20 directed users to infected URLs, the firm said. Waiting for the user is a fake antivirus scan page that tells the person they need an immediate scan of their PC, followed by a prompt to download malware.

“SEO attackers most likely to target holiday shopping keywords are those that push Fake/Rogue Antivirus software aka scareware,” said Sean Sullivan, security advisor for F-Secure. “Typically these types of attackers react to trending topics such as celebrity deaths and other newsworthy events. The holiday season and shopping related searches offers these attackers a proactive set of topics to focus on. They know in advance what the likely trending topics will be.”

Brian Prince eWEEK USA 2014. Ziff Davis Enterprise Inc. All Rights Reserved

Share
Published by
Brian Prince eWEEK USA 2014. Ziff Davis Enterprise Inc. All Rights Reserved
Tags: Panda

Recent Posts

Craig Wright Sentenced For Contempt Of Court

Suspended prison sentence for Craig Wright for “flagrant breach” of court order, after his false…

3 days ago

El Salvador To Sell Or Discontinue Bitcoin Wallet, After IMF Deal

Cash-strapped south American country agrees to sell or discontinue its national Bitcoin wallet after signing…

3 days ago

UK’s ICO Labels Google ‘Irresponsible’ For Tracking Change

Google's change will allow advertisers to track customers' digital “fingerprints”, but UK data protection watchdog…

3 days ago

EU Publishes iOS Interoperability Plans

European Commission publishes preliminary instructions to Apple on how to open up iOS to rivals,…

3 days ago

Momeni Convicted In Bob Lee Murder

San Francisco jury finds Nima Momeni guilty of second-degree murder of Cash App founder Bob…

4 days ago