Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Malware & Threats

Trojan Infections Set New Record in Q1 2013: Panda Labs

According to a new report from Panda Labs, 80% of the malware infections discovered in Q1 2013 were Trojans. These numbers are similar to the trends from 2012, where Trojans were the majority of infection types worldwide.

According to a new report from Panda Labs, 80% of the malware infections discovered in Q1 2013 were Trojans. These numbers are similar to the trends from 2012, where Trojans were the majority of infection types worldwide.

The first quarter’s count, which includes more than 6 million new malware samples, breaks the previous infection record from Q3 and Q4 2012. Despite the fact Trojans can’t spread on their own, criminals selected this type of malware 80% of the time in order to help them carry out information theft.

The boom in Trojan infections can be tracked to the number of compromised websites hosting crime kits, which in turn target vulnerabilities in browser plug-ins like Java, Adobe Reader, etc.

In addition to infection types, Panda’s report also examines location, naming China, Ecuador, Turkey, Argentina, and Peru as having the most infected PCs in the quarter. Globally, more than 30% on the Web are infected.

The list of least infected countries is dominated by European nations, according to Panda’s figures. The country with the fewest infections is Finland, followed by Sweden, Switzerland, the U.K., and Norway.

In a related story, Commtouch also released a Q1 2013 overview, backing some of the conclusions Panda had, including the noticeable increase in the usage of the Blackhole crime kit. When it came to the types of legit sites that were hijacked to host the crime kits, often without the owner’s knowledge, education-related domains were the top risk.

Current news was used extensively last quarter to lure victims to Web sites infected with crime kits. The fake email news alerts – allegedly coming from CNN or the BBC – exploited topics such as the election of the new pope, or the financial crisis in Cyprus.

Advertisement. Scroll to continue reading.

Commtouch also said that the quarter saw a huge spike in malicious emails – to the tune of 973 million malicious per day. Comparing to the numbers from February, March’s malicious mail volume climbed 75%.

“The dramatic rise in the quantity of unwanted and dangerous emails during the first quarter of 2013 shows that email communication is still one of the key attack vectors,” said Avi Turiel, director of threat research and market analysis at Commtouch.

“Email is still the most popular communication tool for private users and businesses alike, making it an attractive target for cybercriminals,” Turiel added.

Written By

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.

Register

Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.

Register

Expert Insights

Related Content

Cybercrime

The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.

Cybercrime

A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...

Cybercrime

No one combatting cybercrime knows everything, but everyone in the battle has some intelligence to contribute to the larger knowledge base.

Malware & Threats

Threat actors are increasingly abusing Microsoft OneNote documents to deliver malware in both targeted and spray-and-pray campaigns.

Malware & Threats

Unpatched and unprotected VMware ESXi servers worldwide have been targeted in a ransomware attack exploiting a vulnerability patched in 2021.

Malware & Threats

A vulnerability affecting IBM’s Aspera Faspex file transfer solution, tracked as CVE-2022-47986, has been exploited in attacks.

Cybercrime

The recent ransomware attack targeting Rackspace was conducted by a cybercrime group named Play using a new exploitation method, the cloud company revealed this...

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...