I saw this white paper and I thought I bring down some interesting information that has come from 2007 and leading into 2008. I have to say though that the information on this white paper is pretty darn mind blowing as I bounce some facts to everyone. Of course since I been getting into this since last year it is not all that surprising since I posted many topics about it as well.


-Sophos currently sees 6,000 new infected webpages each day
-One infected page every 14 seconds
-Only about 1 in 5 of these sites is a hacker site
-83 percent are hacked sites, or legitimate websites that have been compromised by an unauthorized third party.
-Biggest form of Malware is Mal/Iframe
--Has hit over 10,000 legitimate websites from Italy alone
-Hosting of Malware comes From China (51.4%), USA (23.4%), and Russia (9.6%)
-Servers that have been affected the most


--Apache at 48.7%
--IIS 6 40.6%
--nginx 3.4%
--GFE 3.9%
--Other 3.4%

Of course, not surprising enough most of the malware written has come from China but interestingly enough it would seem Brazil is a big Malware writing country as well. Even though a few articles are saying Russia are the King of Malware producers.

EMAIL THREATS
-2005 1 in 44
-2006 1 in 337
-2007 1 in 909

As you will notice with that number, you actually see a decline in threats via email in the last 3 years, and yet billions of emails are being sent out daily though, but people are becoming more aware of the threats that come from these unknown emails. Although, the attachments are declining the links to bad websites are on the rise though, and that is where people are becoming victims because they would trust the website, but in fact they are booby traps. Of course their was an article out saying that malware designers have been google bombing last few months trying to spike the rankings to infected website as well when people search on google.

Worm of 2007

If some of your remember my topics on the Storm work way, way back it would seem that the Storm Worm has been the most destructive worm of that year.

TIME LINE Of the Storm Worm
The main goal of the creators of the storm worm was to use topical news stories, electronic greeting cards, videos and fear tactics so gt people to infect their computers with this worm, and if I remember my numbers correctly it was well over 20,000 computers that got infected with this worm. Sadly though I don't they found a way to break this worm yet and officially defend against since the Storm Worm keeps on changing as the months go by.

Root kits have made a big come back as well last year, but of course always the big one is detection evasion in which designers code their stuff to hide their presence from Security suites. However as it comes with producing the stuff finding malware, spyware, viruses have made huge improvements as well; the following list shows the successful rate of detection by security companies:



So as you can tell the big names able to dectect more as their software has improved over the years.

Spam Facts
-95% of email is spam
- Top 12 producers of spam are:


-Since 2005 US, South Korea, and China have been the top spam producers in the world, and that has not change statistically either. Of course now articles are coming asking for design who know several languages to help virus and malware writers to design website in specific languages besides English.

- Pump-and-dump spam is the biggest type of spam sending, you usually this in when you get stock tip emails or the Viagra emails as well.

I thought I end on that note, and attached here is the full report on security stuff that has gone on since 2007 and what is expected in 2008. So check out the document and see what the computer underground has been doing since last year as the report talks about Apple, Mobile phones and Wi-Fi devices, Social networking (ID Theft), Securing the business network, State-sponsored cybercrime, and of course big time arrests of big timer spammers and malware designers.

[attachment=1041:sophos_s...eport_08.pdf]

 

 

 

Reply