Feeds

Microsoft security report shows worms are returning

UK holding its own in cyber security

Securing Web Applications Made Simple and Scalable

Microsoft's latest security intelligence report shows a resurgence in worms, although rogue security software also remains a big issue.

Rogue security software was found and removed from 13.4m machines, compared to 16.8m last time. It is still an issue but numbers are falling.

Worm figures doubled in the first six months of 2009 - from fifth to second. The focus on worms is partly to do with attention given to Conficker which infected 5.2m machines.

Taterf doubled to 4.9m compared to the second half of 2008.

Taterf is a worm aimed at massive multi-player games. It spreads via USB drives and mapped drives. Surprisingly it appears in enterprise space rather than consumer space - presumably by people sticking USB sticks into work machines.

Taterf tries to steal the assets you have within the game - which has a value to cyber-crooks. This is less of a problem in the UK but China and especially Brazil have very high levels of infection.

In fact, the UK comes out looking fairly positive, according to Microsoft. We have our share of worms but far less than elsewhere. This is due to better protection and because consumers are more likely to use automatic update processes than those elsewhere.

Cliff Evans, head of security and privacy at Microsoft, advised consumers to keep automatic updates on, keep a firewall running and use one of the newest browsers and up to date anti-malware. He said it was important to check all your software, not just Microsoft's.

For Taterf - never log in to your account unless you trust the machine and be suspicious of downloading short cuts or cheats.

Businesses should follow the same advice. MS security update guide has more detailed advice for IT professionals. Systems Centre allows you to manage all security updates and not just Microsoft's.

Looking forward, it appears that worm infections will continue to grow. Evans said: "if criminals keep making money from it they'll stick with it, but there are tools to protect yourself against all these threats."

Microsoft works out the infection rate per thousand machines. The worldwide average is 8.7, Japan, Austria, Germany run at about 3 and the UK 4.9, down from 5.7. In the US the figure is 8.6.

The top worm in the UK is koobface which spreads via Facebook and MySpace. It has been around a while but infection is increasing.

Microsoft publishes this report every six months. It claims the data provides the most comprehensive snapshot of internet threats. Information is collected from monthly Microsoft updates, which look for any infections on 450m PCs every month. Data is also collected from OneCare and Windows Defender, which run on 100m machines.

Microsoft's Forefront Online Protection for Exchange - scans billions of emails.

Finally Bing scans billions of web pages every year.

More from the report here. ®

Mobile application security vulnerability report

More from The Register

next story
LibreSSL RNG bug fix: What's all the forking fuss about, ask devs
Blow to bit-spitter 'tis but a flesh wound, claim team
Manic malware Mayhem spreads through Linux, FreeBSD web servers
And how Google could cripple infection rate in a second
NUDE SNAPS AGENCY: NSA bods love 'showing off your saucy selfies'
Swapping other people's sexts is a fringe benefit, says Snowden
Own a Cisco modem or wireless gateway? It might be owned by someone else, too
Remote code exec in HTTP server hands kit to bad guys
British data cops: We need greater powers and more money
You want data butt kicking, we need bigger boots - ICO
Crooks fling banking Trojan at Japanese smut site fans
Wait - they're doing online banking with an unpatched Windows PC?
NIST told to grow a pair and kick NSA to the curb
Lrn2crypto, oversight panel tells US govt's algorithm bods
prev story

Whitepapers

Reducing security risks from open source software
Follow a few strategies and your organization can gain the full benefits of open source and the cloud without compromising the security of your applications.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
Application security programs and practises
Follow a few strategies and your organization can gain the full benefits of open source and the cloud without compromising the security of your applications.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Consolidation: the foundation for IT and business transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.