February Virus Top 20Best Security Tips offers daily news, information, advices and tips about spyware, adware, viruses, trojans, web vulnerabilities, hackers, other threats    | Register now | Login
   
TIPS NEWS TOOLS DOWNLOADS MALWARE FORUM BOOKS FREE MAGAZINES FREE WEBCASTS & VIDEOS
GFI LANguard Network Security Scanner - Dld 30-day trial! del.icio.us  digg  Furl  NewsVine  Spurl  Blinklist  Ma.gnolia  Reddit  Tailrank  YahooMyWeb 
Best Tips
Internet Explorer Attack...
Beware of Instant Messag...
Mac OS Attacks
Top 10 Most Downloaded P...
Your Kid Online - A Few ...
Understanding Digital Si...
Secure Webmail Tips and ...
ZoneAlarm Internet Secur...
How to Use Encryption an...
Say NO to Spyware - Tips...
Security Scanner
Security Categories
 1. Adware/Spyware
 2. Antivirus
 3. Firewall
 4. Phishing
 5. Linux Security
 6. Windows Security
 7. Security Incidents
 8. Web Security
 9. P2P Security
Advertise With Us!
Latest Viruses / Threats
Mal/Behav-296
2008/8/20 3:43:07
Mal/EncPk-ES
2008/8/20 3:43:07
Troj/Dloadr-BQN
2008/8/20 3:43:07
Vuln: Postfix Local Information Disclosure and Local Privilege Escalation Vulnerabilities
2008/8/20 0:00:00
Troj/Agent-HLZ
2008/8/19 18:16:23
Downloads
 0.Fx MPEG Suite
 1.Daniusoft Video to MP4 Converter
 2.iProtectYou
 3.Deep Ball Defender
 4.Amazing Parrots Screensaver
 5.FlashCam Rebroadcasting server
 6.MysqlDataBackupTool
 7.Photo-Paint 9 script converter
 8.Fast PDF converter
 9.Apex iPod Video Converter Home Edition
RSS / Atom Feeds
Antivirus : February Virus Top 20
Posted by Max on 2007/3/2 14:02:32 (1126 reads)
Antivirus

During February, Kaspersky lab issued three virus alerts with a 'medium' threat rating. All these alerts were because of the rapid spread of new Zhelatin variants in mail traffic.

Obviously, these outbreaks have had an effect on the February Virus Top Twenty: out of the nine new malicious programs, six of them are Zhelatin variants. Storm worm and more.

Here is the February Virus Top 20 :

PositionNamePercentage
1. Email-Worm.Win32.NetSky.t 15.82
2. Email-Worm.Win32.Bagle.gt 11.85
3. Email-Worm.Win32.Zhelatin.dam 8.19
4. Email-Worm.Win32.NetSky.q 7.92
5. Email-Worm.Win32.Zhelatin.o 6.83
6. Email-Worm.Win32.Warezov.ls 5.03
7. Net-Worm.Win32.Mytob.c 3.72
8. Email-Worm.Win32.Zhelatin.u 3.58
9. Email-Worm.Win32.Zhelatin.m 3.30
10. Email-Worm.Win32.NetSky.aa 3.27
11. Email-Worm.Win32.Zhelatin.r 2.87
12. Trojan-Downloader.Win32.Tibs.jr 2.43
13. Email-Worm.Win32.Zhelatin.t 1.94
14. Email-Worm.Win32.Scano.gen 1.83
15. Email-Worm.Win32.Nyxem.e 1.66
16. Email-Worm.Win32.NetSky.b 1.59
17. Packed.Win32.PePatch.gr 1.52
18. Net-Worm.Win32.Mytob.t 1.39
19. Email-Worm.Win32.Bagle.gen 1.26
20. Exploit.Win32.IMG-WMF.y 1.14
Other malicious programs 12.86

The struggle between Zhelatin and Bagle.gt resulted in a veteran worm, Netsky.t, taking first place, while Bagle.gt dropped back to second position. Zhelatin, meanwhile, managed by weight of numbers to occupy four of the top ten places.

When a new leader heads the rankings, there's usually a general shake-up, with new programs making their first appearance, and old viruses making a comeback. As noted above, there are nine new malicious programs in the February Top Twenty, and four re-entries, including some old friends such as Nyxem.e, Scano.gen and Netsky.b. This demonstrates once again that today's email worms have a long lifespan, and may be found in traffic years after their first appearance.

Other malicious programs made up a significant percentage (12.86%) of all malicious code found in mail traffic, indicating that a considerable number of other worms and Trojans are currently actively circulating.

In last month’s Top Twenty, we noted that Warezov worms had been almost totally beaten back by Bagle. Only a single Warezov variant remained in January's Top Twenty, and Bagle.gt led the rankings. However, the world of computer viruses takes after nature, in that it abhors a vacuum, and as usually, new and more dangerous malicious programs have come to fill the void. This was the case in February, when we witnessed several epidemics caused by a new family of worms: Zhelatin.


Zhelatin is the ‘storm worm’ that got such wide coverage in the mass media at the beginning of the year. The worm spreads as emails with a range of topics designed to pique the recipient's curiosity - the terrible hurricane in Western Europe, the death of President Putin, and the resurrection of Saddam Hussein.

 

Although Zhelatin was initially thought to be a new Warezov variant, closer analysis revealed a new family of malicious programs which probably originated in Asia.

Full story



Other articles
2008/8/13 16:42:03 - 10 Million Zombies Are Spreading Spam and Malware Every Day
2008/8/11 9:03:35 - Nearly $8.5 Billion Lost by US Consumers because of Online Threats
2008/8/8 6:35:36 - EDS' Eight Tips for Consumers to Protect Themselves from Identity Theft
2008/8/4 11:16:32 - NovaShield, Inc. Launches NovaShield AntiMalware Version 2.0 With 90-Day Free Trial
2008/8/3 4:35:31 - Full P2P Anonymity using Torrent Privacy

The comments are owned by the poster. We aren't responsible for their content.



 

HOME | NEWS | SECURITY BLOG | TOOLS | DOWNLOADS | SECURITY BOOKS | TIPS | SITEMAP | TERMS AND CONDITIONS | INTERNET SECURITY SEARCH ENGINE | ADVERTISE ON THIS SITE | CONTACT
Nov '07 | Dec '07 | Jan '08 | Feb '08 | Mar '08 | Apr '08 | May '08 | Jun '08 
Best Security Downloads offers 4000+ free and free to try security downloads