Sophos

Talk to our experts

Find your local press contact

Resources

Info feeds

What are info feeds?

31 October 2006

Top ten malware threats and hoaxes reported to Sophos in October 2006 Twelve months on, home users still failing to heed advice to Get Safe Online

Sophos, a world leader in IT security, has revealed the most prevalent malware threats and hoaxes causing problems for computer users around the world during October 2006.

The report, compiled from Sophos's global network of monitoring stations, shows that while the well-known Netsky-P has proved once again to be the most prevalent piece of malware in circulation, variants of the Stratio worm (also known as Stration or Warezov) have entered the top ten for the first time. Several hundred variants of the worm were widely spammed out during the month, on some days accounting for more than 50% of all reported malware.

Sophos experts note that on the one-year anniversary of Get Safe Online - the UK's national campaign to raise awareness about the risks of leaving computers unprotected online - established virus families such as Netsky, Mytob and Zafi continue to cause havoc for internet users, despite protection having long been available.

The proportion of infected email continues to remain low, at just one in 300 (0.34%), while during October Sophos identified 3,076 new threats, bringing the total number of malware protected against to 193,821.

Position Last
month		 Virus Percentage of reports
11W32/Netsky-P
   15.2%
22W32/Mytob-AS
   12.2%
3NewW32/Stratio-Zip
   5.7%
43W32/Bagle-Zip
   5.3%
55W32/Netsky-D
   5.1%
6NewW32/Stratio-AY
   4.3%
77W32/Mytob-C
   3.5%
88W32/Zafi-B
   3.4%
95W32/Nyxem-D
   3.1%
106W32/Mytob-E
   2.6%
Others 39.6%

"This is like a new dog employing old tricks - Stratio has made it into the top ten because it used numerous social engineering tactics and has been aggressively spammed out," said Carole Theriault, senior security consultant for Sophos. "Home users who haven't installed or updated their anti-malware protection remain the most vulnerable targets, and if old-timers like Netsky and Mytob are still getting through users' defenses, it's a sure bet that new malware is doing the same thing. Given these circumstances you have to ask, are awareness campaigns like Get Safe Online really having the intended impact? We're still awaiting firm evidence that they have actually connected with the general public."

The top ten hoaxes and chain letters in October 2006 were as follows:

Position Hoax Percentage of reports
1Olympic torch
   8.5%
2Hotmail hoax
   8.2%
3WTC Survivor
   7.9%
4Bonsai kitten
   4.5%
5MSN is closing down
   4.1%
6Bill Gates fortune
   3.2%
7Meninas da Playboy
   3.0%
8Justice for Jamie
   2.6%
9A virtual card for you
   2.5%
10Budweiser frogs screensaver
   2.0%
Others53.5%

Graphics of the above top ten malware chart are available.

Do you know how many employees are running virtualisation software on their PCs?



About Sophos

Sophos enables enterprises all over the world to secure and control their IT infrastructure. Sophos's network access control, endpoint, web and email solutions simplify security to provide integrated defenses against malware, spyware, intrusions, unwanted applications, spam, policy abuse, data leakage and compliance drift. With over 20 years of experience, Sophos protects over 100 million users in nearly 150 countries with its reliably engineered security solutions and services. Recognized for its high level of customer satisfaction and powerful yet easy-to-use solutions, Sophos has received many industry awards, as well as positive reviews and certifications.

Sophos is headquartered in Boston, US and Oxford, UK. More information is available at www.sophos.com

See also: