Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Vulnerabilities / Threats

Report: New Malware Increased By 26 Percent In Past Year

Average of 73,000 new samples created daily in 2011, PandaLabs reports

The volume of new malware on the Web increased by 26 percent during the first quarter of 2011, according to a report issued today.

In its Q1 malware report, PandaLabs, Panda Security's anti-malware laboratory, identified an average of 73,000 new malware strains per day during the first quarter of 2011, most of which were Trojans. There was a 26 percent increase of new threats compared to the same period last year, the researchers say.

Trojans remain the most popular type of threat to computer systems, and now account for 70 percent of all new malware, according to PandaLabs. "This is unsurprising, considering it can be incredibly lucrative for cybercriminals to commit fraud or steal money from Internet users through the online banking channel," the report says.

"The proliferation of online tools that enable non-technical people to create Trojans in minutes and quickly set up illegal business -- especially when it can provide access to banking details -- is responsible for Trojans' impressive growth," said Luis Corrons, technical director of PandaLabs.

Not all kind of Trojans grow at the same pace, according to the researchers. Bank Trojans have decreased, bots have remained steady, and fake antivirus apps have decreased.

The number of "downloaders" -- Trojans that infect a machine and then connect through the Internet to download additional malware -- has increased significantly, PandaLabs says. "Hackers often use this method because the downloader is lightweight -- only containing a few lines of code -- and can go completely unnoticed, unlike other Trojans," the report says.

Have a comment on this story? Please click "Comment" below. If you'd like to contact Dark Reading's editors directly, send us a message.

Tim Wilson is Editor in Chief and co-founder of Dark Reading.com, UBM Tech's online community for information security professionals. He is responsible for managing the site, assigning and editing content, and writing breaking news stories. Wilson has been recognized as one ... View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Why Vulnerable Code Is Shipped Knowingly
Chris Eng, Chief Research Officer, Veracode,  11/30/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: I think the boss is bing watching '70s TV shows again!
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-26246
PUBLISHED: 2020-12-03
Pimcore is an open source digital experience platform. In Pimcore before version 6.8.5 it is possible to modify & create website settings without having the appropriate permissions.
CVE-2020-29279
PUBLISHED: 2020-12-02
PHP remote file inclusion in the assign_resume_tpl method in Application/Common/Controller/BaseController.class.php in 74CMS before 6.0.48 allows remote code execution.
CVE-2020-29280
PUBLISHED: 2020-12-02
The Victor CMS v1.0 application is vulnerable to SQL injection via the 'search' parameter on the search.php page.
CVE-2020-29282
PUBLISHED: 2020-12-02
SQL injection vulnerability in BloodX 1.0 allows attackers to bypass authentication.
CVE-2020-29283
PUBLISHED: 2020-12-02
An SQL injection vulnerability was discovered in Online Doctor Appointment Booking System PHP and Mysql via the q parameter to getuser.php.