Feeds

Web viruses drop off despite IE exploit flap

Hacker holiday confounds expectations

Securing Web Applications Made Simple and Scalable

Web viruses fell by half in September, despite recent high-profile Microsoft vulnerabilities. But spyware infections grew 21 per cent over the same period last month, according to a study by UK-based web filtering firm ScanSafe.

Much attention was paid to Microsoft vulnerabilities and zero-day exploits last month but this didn't translate to much by the way of hacker activity. "None of the top 10 web viruses blocked by ScanSafe during the month were exploits of Microsoft vulnerabilities uncovered in September, including the much publicized Vector Markup Language vulnerability," said Eldar Tuvey, chief exec and co-founder of ScanSafe. "While these vulnerabilities were exploited, the exploits did not occur in high volume."

The drop-off in so-called drive-by downloads (web-based virus attacks) reported by ScanSafe confounded the firm's expectations in reversing trends from previous months. In August, web viruses rose 23 per cent while spyware decreased 12 per cent. So how to explain the shift? ScanSafe reckons malware production has become seasonal.

"We fully anticipate a jump in malware as consumers go online to start their holiday shopping. As such, we caution users and those responsible for corporate networks not to be lulled into a sense of complacency, but to take the necessary precautions to protect themselves from web threats, Tuvey said.

The latest ScanSafe Global Threat Report study, released Wednesday, is based analysis of more than five billion web requests and more than 10m web threats processed by the security firm in September. ®

The smart choice: opportunity from uncertainty

More from The Register

next story
Mozilla fixes CRITICAL security holes in Firefox, urges v31 upgrade
Misc memory hazards 'could be exploited' - and guess what, one's a Javascript vuln
Manic malware Mayhem spreads through Linux, FreeBSD web servers
And how Google could cripple infection rate in a second
How long is too long to wait for a security fix?
Synology finally patches OpenSSL bugs in Trevor's NAS
Don't look, Snowden: Security biz chases Tails with zero-day flaws alert
Exodus vows not to sell secrets of whistleblower's favorite OS
Roll out the welcome mat to hackers and crackers
Security chap pens guide to bug bounty programs that won't fail like Yahoo!'s
HIDDEN packet sniffer spy tech in MILLIONS of iPhones, iPads – expert
Don't panic though – Apple's backdoor is not wide open to all, guru tells us
Researcher sat on critical IE bugs for THREE YEARS
VUPEN waited for Pwn2Own cash while IE's sandbox leaked
prev story

Whitepapers

Top three mobile application threats
Prevent sensitive data leakage over insecure channels or stolen mobile devices.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Designing a Defense for Mobile Applications
Learn about the various considerations for defending mobile applications - from the application architecture itself to the myriad testing technologies.
Build a business case: developing custom apps
Learn how to maximize the value of custom applications by accelerating and simplifying their development.