Search for:

Articles 

Contact us 

Media 

News 

Events 

Links 

Free Downloads 

 

Virus Report > Back Home

  

 
TREND MICRO WEEKLY VIRUS REPORT:
Friday February 17, 2006  
Issue Preview:

1. Trend Micro Updates - Pattern File & Scan Engine Updates
2. Pharming for Dollars - Lucrative for Some, Costly to Most
3. Top 10 Most Prevelant Global Malware
4. Malware Threats - What Does it all Mean? Watch our Online Demo

1. Trend Micro Updates - Pattern File & Scan Engine Updates
  • Pattern File : 3.215.00
  • Scan engine : 8.000

    2. Pharming for Dollars - Lucrative for Some, Costly to Most
    Remember the old farmer's joke:
    Q. How do you make a million dollars farming?
    A. Start with three million dollars.

    While too true to be very funny for a traditional farmer, those numbers may be just the opposite when talking about pharming. This online fraud technique poses a growing threat, and a little investment by its perpetrators can prove very costly to its victims.

    Many are familiar with phishing, which is the act of sending an e-mail that falsely claims to be from a legitimate business, in an attempt to trick the recipient into giving away account information, such as passwords. When this is accomplished by hacking, it's called pharming. Pharming is relatively new, but the end result is one of the oldest: financial fraud.

    Jamz Yaneza, Trend Micro Incorporated Senior Threat Analyst, said that pharming is probably the most difficult fraud to perpetrate. It entails redirecting traffic at the DNS (Domain Name Server; the Internet version of a building directory) level and capturing this data stream for profit. Pharming poses a threat to online business by eroding trust between entities, thus preventing transactions from happening.

    "As people move towards paper-less offices, these online threats can become bottlenecks to progress. Imagine what would happen if people couldn't do online trading, go to online auctions, and basically avoid sending e-cards?" asked Yaneza.

    While most anti-phishing solutions are usually end-point oriented; protecting against pharming involves maintaining data traffic flow while preventing its redirection.

    "In traffic redirection there are two ways in which this could be implemented that we see today: modification of the Windows HOSTS file and DNS spoofing or poisoning," said Yaneza.

    "The first one, HOSTS modification, is part and parcel of most worms that are out in the wild. It can usually be remedied via anti-virus utilities and services."

    DNS modification is usually done on a targeted level, say at a particular ISP or enterprise, where a compromised server with administrative rights is online, thus requiring a vigilant administrator to monitor networks against intrusion.

    3. Top 10 Most Prevelant Global Malware
    (from February 10 to February 16, 2006)
    1. WORM_NYXBM.E 
    2. SPYW_DASHBAR.300 
    3. SPYW_GATOR.F 
    4. HTML_NETSKY.P 
    5. WORM_NETSKY.P  
    6. WORM_MOFEI.B  
    7. WORM_BAGLE.CL 
    8. JAVA_BYTEVER.A  
    9. ADW_SLAGENT.A  
    10. EXPL_WMF.GEN  
    4. Malware Threats - What Does it all Mean? Watch our Online Demo

    "Phishing", "Trojans", "Spyware"... Worried about the threat of computer attack but confused about the terms? View this fun multimedia presentation for an introductory overview of some of the many types of malware and how they can affect you.

    Watch the online demo:
    http://trendnewsletter.rsc03.net/servlet/cc5?lgLQSRSDQTVrjxpuipjLuLKpHQJhuV2VSY  

    		•
    < Back

    © IMPIRE Communications, LLC All Rights Reserved.  Website designed & managed by Oculus Networks