61% of new threats created in Q1 were banker Trojans
March 30th, 2010

–      Resurgence of traditional viruses after recent decline
–      Attacks through social networks and BlackHat SEO attacks using Apple and Facebook as lures have been among cyber-crooks’ favourite strategies
–      One of the largest botnets to date (Mariposa) has been shut down. Malware distributed by Vodafone and several critical security holes have been discovered

A whopping 61% of all new malware in circulation during the first few months of 2010 were banker Trojans – malicious code designed to steal confidential banking information such as passwords. This is according to Panda Security’s anti-malware lab which released its quarterly report yesterday (available here: http://www.pandasecurity.com/img/enc/Quarterly_Report_Pandalabs_Q1_2010.pdf)

In a period marked by a surge in new malware, old-fashioned viruses staged a comeback after having seen a decline in recent years, accounting for 15.13% of new variants, the second largest segment.

“This virus activity is most likely a strategy designed to draw the attention of antivirus laboratories away from other threats,” says the head of Panda Security’s sub-Saharan operations, Jeremy Matthews. “In any case, it is a strategy that has clearly failed, as it has resulted in an even greater dedication of resources in anti-malware laboratories.”

The infection ranking, generated from data supplied by the Panda ActiveScan, a free online scanner, sees Spain once again in first place, with over 35% of computers infected. Then come the USA, Mexico and Brazil.

So far, 2010 has been a busy year in other areas of IT security. Panda, in conjunction with Defense Intelligence and international law enforcement agencies dismantled Mariposa <http://pandalabs.pandasecurity.com/es/red-de-bots-mariposa/> , one of the largest botnets known to date. Panda also revealed that malware from Mariposa was being distributed in phones from Vodafone.

BlackHat SEO attacks, which became popular during 2009, continue to be used by cyber-crooks who exploited the first quarter’s newsworthy topics like Facebook and the launch of Apple’s iPad. BlackHat SEO involves the manipulation of search engine results to distribute malware (mostly fake antivirus products) by directing unsuspecting users to dodgy sites when they’re busy searching for something entirely unrelated.

The PandaLabs Quarterly Report can be downloaded here: http://www.pandasecurity.com/img/enc/Quarterly_Report_Pandalabs_Q1_2010.pdf


March 2010

© Copyright 2022 . All rights reserved.
Panda Security Press Office. http://www.pandasecurity.com/southafrica/