Dark Reading
Protect The Business - Enable Access
Web-Based Malware Infections Have Doubled Since Last Year, Report Says
More than 1.2 million sites were infected in Q3, according to figures from Dasient By Tim WilsonAccording to a third-quarter malware report issued today by anti-malware vendor Dasient, more than 1.2 million websites were infected last quarter -- more than twice as many as the same quarter a year ago.
"We're seeing real growth in the rate of infection since last year," says Neil Daswani, CTO and co-founder of Dasient. "And attackers are becoming more sophisticated in their use of anti-detection mechanisms -- they know what tools researchers are using and they're finding ways to avoid them."
Drive-by downloads and rogue antivirus scams are the most popular methods of conveying malware, according to the report. "While attackers continue to grow their use of almost every tool at their disposal [including spreading viruses via email attachment], our research indicates that the use of drive-by-downloads and rogue anti-virus schemes eclipse other modes of malware distribution," the report says.
Malvertising -- in which malware is hidden in advertisements carried by legitimate websites -- continues to be a growing attack vector, Dasient says. "We estimate that over 1.5 million malvertisements a day were served during Q3," Dasient states. "Our systems measured that the average lifetime of a malvertising campaign was 11.1 days, indicating that malvertisements continue to be an extremely effective means of malware distribution for cybercriminals."
The lion's share of malware attacks come from the .com domain, Dasient says, but the .ru domain -- Russia -- made a sharp jump in the third quarter, while the .cn domain (China) actually distributed less malware than in the previous quarter.
Interestingly, although overall malware infection has doubled in the past year, the volume of infections actually dropped during the third quarter. The report data does not indicate the reason for the drop-off, Daswani says, but it's possible that malware traffic drops off seasonally during the summer, just as most other Web traffic does.
"It's not surprising to see a dip in [malware] traffic during the summer months," Daswani says. "Attackers are people, too -- everybody needs a vacation."
Have a comment on this story? Please click "Discuss" below. If you'd like to contact Dark Reading's editors directly, send us a message.
 |
To upload an avatar photo, first complete your Disqus profile. | View the list of supported HTML tags you can use to style comments. | Please read our commenting policy. |
Subscribe to RSSVulnerability Management Reports
Choosing the Right Vulnerability Scanner for Your Organization
Vulnerability scanners can be used to help detect and fix systemic problems in an organization's security program and monitor the effectiveness of security controls. However, a vulnerability scanner can improve the organization?s security posture only when it is used as part of a vulnerability management program, in which products, processes and people are working together to find, identify, prioritize and mitigate threats. Here are some tips on choosing and implementing vulnerability scanners in your enterprise.
Using Google to Find Vulnerabilities In Your IT Environment
Attackers are increasingly using a simple method for finding flaws in websites and applications: they Google them. Using Google code search, hackers can identify crucial vulnerabilities in application code strings, providing the entry point they need to break through application security. Sound scary? It is, but there is good news: You can use these same methods to find flaws before the bad guys do. In this special report, we outline methods for using search engines such as Google and Bing to identify vulnerabilities in your applications, systems and services--and to fix them before they can be exploited.
Security Pro's Guide to Patch Management
It's no longer sufficient to patch just Windows, Office and IE. With the massive array of applications now residing on enterprise PCs, and the proliferation of mobile and cloud-based applications, your business is far too vulnerable to exploitation unless you have a solid strategy for patch prioritization, deployment and quality assurance. Follow these steps to put your plan in place.
Other reports from the Vulnerability Management Tech Center:
- In-House Malware Analysis: Why You Need It, How to Do It
- Scanning Reality: Limits of Automated Vulnerability Scanners
- Using BSIMM To Develop Safe Applications
- Applications Security: Eliminating Vulnerabilities in Enterprise Software
- In a Fix? Try a Vulnerability Remediation Life Cycle
- Sharing Is Daring: Multi-Enterprise Vulnerability Management Strategies
- Compliance 101: Creating a Strong Vulnerability Management Strategy
- Ground Zero: Building a Layered Defense Against Unknown Threats
- Assessing the Danger: How IT Can Ace Vulnerability Management
Vulnerability Management Newsfeed
- WatchGuard Continues Pattern Of Strong Growth
- Agnitum: PC Security Test shows Antivirus Products Being Left Behind
- ICASI Releases Update To XML Framework For Reporting IT System Vulnerabilities
- Kindsight Security Labs Releases Q1 2012 Malware Report
- How Travelers Can Protect Themselves From Hotel Wi-Fi Drive-By Attacks
- TCS Introduces Military Cyber Grade Security For Enterprises
MORE NEWSFEED >>>
- Reduce Cost and Improve Manageability with IBM Windows Storage Server
- Big Data at High Speed: Complex Event Processing at 10x
- Unlock the Value of Your Business Data: IBM's Integration Solution for .NET Environments
- Securing the Cloud: Extend the Benefits of Traditional IT Environments to Cloud
- Insurance Workforce Optimization: How To Work Smarter To Benefit Your Customers, Employees and the Bottom Line
