Microsoft: Worms are most prevalent security problem
IDG News Service - The Conficker worm continues to be one of the most prevalent threats facing PCs running Windows, according to a new security report published by Microsoft.
For the first six months of the year, Microsoft found that more than 5 million computers were infected with Conficker, according to its latest Security Intelligence Report.
Conficker spreads either by exploiting a vulnerability in the Microsoft Windows Server service, through infected removable media or brute-forcing weak passwords on other PCs.
Conficker alarmed Microsoft so much when it appeared that Microsoft issued an emergency patch in October 2008 for the software vulnerability that allowed it to spread rapidly.
The worm is still circulating, mainly in enterprises, said Vinny Gullotto, general manager of the Microsoft Malware Protection Center. Due to its password-cracking ability, if Conficker gets on one PC in a company, it can often then rapidly spread.
Microsoft collects data on infections from its free security products such as Windows Defender, the Malicious Software Removal Tool (MSRT), Security Essentials as well as ones the company sells.
Another worm -- called Taterf -- took the number two spot for the most infections at 4.9 million. Taterf steals authentication and account information for massively multiplayer online games such as World of Warcraft and Lineage, among others, and spreads through infected drives such as a USB stick or an infected network drive.
Microsoft did see a decline of machines infected with Zlob, a notorious Trojan horse that spread by tricking people into believing it was actually a media codec, which is software used to encode and decode audio or video.
Microsoft's free tools such as MSRT will remove Zlob. For the first half of the year, Microsoft saw only 2.3 million infections, dropping drastically from the 21.1 million infections the company counted for the same period a year prior.
Gullotto said that Microsoft received an e-mail from the supposed creators of Zlob saying that they were now "closing soon." The e-mail, in broken English allegedly from "Russia," complimented Microsoft on responding quickly to the threats.
But it's just a small victory, as there are plenty of other security problems. Fake antivirus programs are among those.
The programs, which look like legitimate security software but do not work, badger people with pop-up menus saying their computer is infected. The annoying messages only subside after buying the software for as much as $60.
Microsoft continues to add detection for new families of rogue antivirus software in products such as Windows Defender and the MSRT, Gullotto said. Fewer PCs were found to have been infected in the latest reporting period: 13.7 million versus 16.8 million computers for the second half of 2008.
- Radicati: Cloud Business Email - Market Quadrant 2013 Google was named the top cloud business email provider in a recent report by research firm Radicati. Out of 14 key players, Google...
- Tablets in the Enterprise: A Checklist for Successful Deployment How can you enterprise manage and secure tablets in order to protect corporate data while providing access to the information and applications employees...
- Enterprise Mobility: A Checklist for Secure Containerization The advantages and disadvantages of the multiple approaches to containerization. Learn More>>
- Enterprise File Sync & Share Checklist File sync and share has changed the way people work and collaborate in today's tech-savvy world. Gone are the email roadblocks, clunky FTP...
- Live Webcast LIVE EVENT: 5/7, The End of Data Protection As We Know It. Introducing a Next Generation Data Protection Architecture. Traditional backup is going away, but where does this leave end-users?
- LIVE EVENT: 5/7, The End of Data Protection As We Know It. Introducing a Next Generation Data Protection Architecture. Traditional backup is going away, but where does this leave end-users?
- On-demand webinar: "Mobility Mayhem: Balancing BYOD with Enterprise Security" Check out this on-demand webinar to hear Sophos senior security expert John Shier deep dive into how BYOD impacts your enterprise security strategy... All Security White Papers | Webcasts