The experts of IBM's infobezopasnosti warns of security
surfing no more.

In the first half of this year found more exploits than
entire 2008 Malware now hiding and quite
trusted sites, and no one can be trusted more, even sites that are known
and are popular for many years. IBM today (27
August) will publish its report X-Force, on the situation with the information
security in the world for the first half of 2009, experts say the unprecedented
increase in the number of new malicious links during this period - 508%.
This problem no longer confined to the malicious domains and
web sites: experts say the growth in the presence of malicious content
apparently reliable resources, including the popular search engines, blogs, forums,
personal Web sites and entertainment news sources. Vulnerabilities remain
used by hackers to steal data and management of contaminated
computers. In X-Force report also points to an unprecedented
high prevalence of the web of hidden malicious codes, especially
exploit vulnerabilities in the PDF-files. This, according to experts IBM,
indicates an increase of attacks. Overall, in the first half of this year
was found more exploits than for all 2008 In addition, in the second
quarter of this year the number of suspicious content, including containing
insert-exploits, according to monitoring IBM ISS Managed Security Services,
has nearly doubled. "The trends highlighted in the report seems to say
that the Internet finally got all the features of the Wild West, where no
can not be trusted - says Chris Lamb (Kris Lamb), director of X-Force.
- Today there is no such thing as safe surfing on the Internet, and
not only suspicious sites now have a responsibility to spread
malware. We reached a tipping point, when at risk
each user and each website should be considered as suspicious.
Frightening convergence ecosystem Network creates favorable conditions for criminal
of action. " As commented Alexander CNews guests the
Center for Global Studies and Threat Analysis "Kaspersky Lab"
Similar data on the number of new malicious websites in the first half
this year, while LC can not lead. But in general, according to the Guestbook, so
trend, and that the X-Force experts say the growth of the presence of
harmful content on external trusted resource - the truth. "Trojan
Gumblar, which was discovered by tens of thousands of sites - only one that
example - says Gostev. - With regard to problems with PDF (and the company's products
Adobe in general), about which we reported last year, they continue
remain relevant and current. " In X-Force report also states
a significant increase in the number of attacks using web applications. For example,
the number of attacks with vredreniem SQL-code in the first quarter of 2009 increased
by 50% compared with fourth quarter 2008 and second quarter
has almost doubled compared to the first. "The two main themes of the first half
2009 - increase the number of sites that contain malicious software, and
and doubling the number of hidden Web-based attacks - continues to Lamb. - These trends
point to fundamental weaknesses in the security of all
Internet ecosystem, where the interaction of browsers, plug-ins, content, and
server applications incredibly increases the complexity and risk. " On
According to X-Force, in the first half of 2009 it was discovered 3240 new vulnerabilities
- 8% more than during the same period in 2008 is, according to the authors
report, a new peak of growth vulnerabilities. In 2007 their number decreased for the first time,
but in 2008 reached a new record. Now at an average annual observed
6-7 thousand new "holes". A number of vulnerabilities in the PDF-document
in the first half of this year, more than in all of 2008, over
half of the detected malicious activity - 55% - were Trojans.
This is 9% higher than in 2008 The most common
They are designed to steal data. At the same time, IBM
noted a significant reduction in phishing. In their view, to place such
attacks aimed at financial institutions now come banker Trojans.
During the first half of 2009, 66% of phishing attacks occurred in the financial sector,
while in the first half of 2008 the figure was 90%.
At the same time on the payment systems are directed 31% of phishing attacks. Most
spam in the first half of 2009 - one that contains links
but, as noted in the X-Force, again increasing the number of unwanted messages that contain
images (although these still have to send no more than 10% of the total
spam). Not surprised by active growth of malicious programs on the Internet
Paul Potasuev, CIO ESET: В«Increasing
resources such as blogs and social networks, the growing popularity of online banking
and other payment services - new loopholes for criminals to allow
hold of money the user. Very often, for profit hackers
skillfully combine the technological tricks of social engineering techniques, masking
dangerous files under the harmless application and urging users to download
them, for example, under the guise of the new codec. This malware has received considerable
spread in social networks. The main threat for online-banking
remain the Trojans, keyloggers, whose purpose is to steal bank
accounts and access to online wallet of the victim. "

Share This Post: