Sophos: Iframe Worm No. 1 in December

Only 30% of computer users think 2008 will be a better year for security

BOSTONIT security and control firm Sophos has revealed the most prevalent malware threats and countries causing problems for computer users around the world during December 2007.

While the study, compiled by Sophos's global network of monitoring stations, has shown only minor changes since November, a recent Sophos poll* has revealed that 70 percent of those surveyed believe that 2008 will actually be just as bad or worse for IT security than 2007.

The top 10 list of web-based malware threats in December 2007 reads as follows:

  1. Mal/Iframe 50.8%

  2. Mal/ObfJS 19.2%

  3. Troj/DRClick 14.6% new entry

  4. Troj/Unif 3.0%

  5. Troj/Decdec 2.4%

  6. Troj/Fujif 1.6%

  7. Troj/Pintadd 0.9% new entry

  8. Troj/Zlobar 0.8% re-entry

  9. Mal/FunDF 0.6%

  10. VBS/Haptime 0.5%

    Others 5.6%

Mal/Iframe, which works by injecting malicious code into webpages, retains its position as leader of the chart but did not have the same impact as the previous month during which it accounted for almost 70 percent of web-based attacks. Mal/ObfJS, a method by which hackers use obfuscated JavaScript to infect web surfers, has successfully held onto second place.

"As this threat report indicates, computer users recognize the need to remain vigilant in securing themselves against web-based attacks,” said Mike Haro, senior security analyst at Sophos. “At the same time, end users should not be discouraged because it is possible to combat cybercriminals with an effective IT security solution. In 2008, it’s our hope that businesses and consumers alike will continue to appreciate the magnitude of these threats and make sure their networks and data are fully protected. "

Sophos plc

Editors' Choice
Jai Vijayan, Contributing Writer, Dark Reading
Kelly Jackson Higgins 2, Editor-in-Chief, Dark Reading