BitDefender Discloses Malware Threat of Q3-2011
BitDefender the widely acclaimed provider of security solutions in its just issued report lists several threats that were encountered the most on the Romanian cyber-space during Q3-2011 .i.e. July-September 2011.
The firm, apparently states that Downadup worm's twin variants -Win32.Worm.DownadupJob.A (2.13%) and Win32.Worm.Downadup.Gen (7.71%) together accounted for 10% of all infections discovered on Romanian computers. To proliferate, the worm abused security flaws within the RPC Server Utility of Windows computers, while trying to load scareware software i.e. phony anti-virus programs as well as preventing access to legitimate security application Internet sites.
One more malware item, which was circulating within the Romanian online environment, was Trojan.Autorun that apparently was one of the highly-frequent e-threats in circulation. This Trojan exploited Autorun files saved in detachable storage devices for proliferating, hence the name Trojan.Autorun.
Albeit, BitDefender places Downadup on the top of its list, actually the Autorun family of Trojans was found the maximum on Romanian systems, accounting for more than 13% of the total detections identified in Romania. Worm.Autorun.VHG (1.47%), Trojan.Autorun.AET (4.79%) and Trojan.Autorun.INF.Gen (6.98%) utilized the Autorun utility found on storage devices like outside hard drives, memory cards or USB sticks for proliferating across numerous PCs.
Additionally, Win32.Sality.OG also made it to the list along with its Win32.Sality.3 version. Incidentally, their prevalence wasn't so much like the earlier malware items. Despite so, they tended to be more perilous, apart from disabling any anti-malware program on the contaminated system while as well arriving with rootkits. The Sality group of worms spread infection via placing its payload onto .scr script and .exe executable files.
Lastly, Trojan.Script.404794 (1.22%) and Trojan.Script.456845 (1.89%) have easily identifiable malicious program since it diverts end-users onto websites that host illicit content through domains like Net, Com, Org, US and UK. However, initially, these Trojans' presences within the PCs they infect aren't known due to script error alerts that are displayed on websites.
Conclusively, the above malware programs resulted in harm to innumerable PCs every month during the quarter; therefore according to security specialists, adequate protections are essential such as maintaining up-to-date virus definitions as also running regular system scans for possible malware.
» SPAMfighter News - 15-10-2011