Exploit Prevention Labs Exploits SurveyExploit Prevention Labs released the results of its April 2007 Exploit Prevalence Survey
ATLANTA -- Exploit Prevention Labs (http://www.explabs.com), developer of the LinkScanner line of safe surfing software that protects against exploits, phishing, and other social engineering attacks, today released the
results of its April 2007 Exploit Prevalence SurveyT. Celebrating its one year anniversary this month, the Exploit Prevalence Survey is the industry's only
survey to use real-world data to definitively measure the most widespread web-borne exploits. Results are derived from automated reports submitted by LinkScanner users combined with data collected from all levels of the company's multi-faceted research network.
"Cyber criminals hit the ground running in April," noted Roger Thompson, CTO of Exploit Prevention Labs and author of the monthly Exploit Prevalence Survey.
"The ANI exploit that first hit the headlines at the end of March is proof that the bad guys are getting smarter and more sophisticated because it attacks fully patched machines. Even though Microsoft issued an emergency patch on April 3, it's moved up from number four to number three this month, representing almost
12 percent of all exploit occurrences."
Thompson's team also uncovered two new exploit packages in April, both of which are being widely distributed across the Internet. One package, dubbed 'WebAttacker 2.0' by Thompson because it mimics the distribution model of earlier WebAttacker-driven exploits, entered the charts at number five with just over nine percent of all occurrences.
"There are no new exploits in the package," Thompson said. "But it has new encryption and the important thing is that it is clearly being sold as a package, as was WebAttacker. We've called it WebAttacker 2.0 because of similarities, but we
expect that time will eventually show the creators to be from a different group."
Exploit Prevention Labs