Threat Category: Web threats | Page 22

In the past ten years, botnets have evolved from small networks of a dozen PCs controlled from a single C&C into sophisticated distributed systems comprising millions of computers with decentralized control. Why are these enormous zombie networks created?

As in previous months, this malware rating is compiled from data generated by the Kaspersky Security Network (KSN). However, slightly different methods have been used to select and analyze the data.

Two Top Twenties have been compiled from data generated by the Kaspersky Security Network (KSN) throughout May 2009.

Two Top Twenties have been compiled from data generated by the Kaspersky Security Network (KSN) throughout April 2009.

Today we’ve seen a new variant of Net-Worm.JS.Twettir going around on Twitter. Kaspersky products detect it as Net-Worm.JS.Twettir.h.

The way that computer viruses and malware travel has evolved in much the same way that information itself has changed in the way it travels.

As we wrote yesterday, the Kido botnet has installed another well-known worm – Iksmas, aka Waledac – on infected computers.

There’s been a huge amount of attention around Kido/Conficker/Downadup this week. As the vast majority of experts anticipated nothing happened on the first of April.

Two Top Twenties have been compiled from data generated by the Kaspersky Security Network (KSN) throughout March 2009.

Criminals are using the Kido/ Conficker hype to bring their rogue Anti-Virus amongst the people.

Two Top Twenties have been compiled from data generated by the Kaspersky Security Network (KSN) throughout February 2009.

2007-2008 was the start of a new period characterized by a rapid increase in the number of Trojan programs designed to steal information, mostly related to bank accounts and online games.

Unlike our previous six-month and annual statistical reports, this report is completely based on data collected and processed using the Kaspersky Security Network (KSN).

We have seen quite a few different and controversial comments regarding the recent attack on usa.kaspersky.com/support. People have questions and want answers: what really happened and what risk did the penetration create?

As a member of group dealing with the incident analysis I would like to…

Two Top Twenties have been compiled from data generated by the Kaspersky Security Network (KSN) throughout January 2009.

Reports

According to Kaspersky, Librarian Ghouls APT continues its series of attacks on Russian entities. A detailed analysis of a malicious campaign utilizing RAR archives and BAT scripts.

Kaspersky GReAT experts uncovered a new campaign by Lazarus APT that exploits vulnerabilities in South Korean software products and uses a watering hole approach.

MysterySnail RAT attributed to IronHusky APT group hasn’t been reported since 2021. Recently, Kaspersky GReAT detected new versions of this implant in government organizations in Mongolia and Russia.

Kaspersky researchers analyze GOFFEE’s campaign in H2 2024: the updated infection scheme, new PowerModul implant, switch to a binary Mythic agent.

Web threats

The economics of Botnets

Monthly Malware Statistics: June 2009

Monthly Malware Statistics: May 2009

Monthly Malware Statistics: April 2009

New Twitter XSS-Worm going around

Drive-by Downloads. The Web Under Siege

Bot-watching

Kido/Conficker: a sobering thought

Monthly Malware Statistics: March 2009

Criminals Surfing the Kido/ Conficker Hype

Monthly Malware Statistics: February 2009

Kaspersky Security Bulletin: Malware evolution 2008

Kaspersky Security Bulletin: Statistics 2008

What really happened to usa.kaspersky.com/support

Monthly Malware Statistics: January 2009

Reports

Sleep with one eye open: how Librarian Ghouls steal data by night

Operation SyncHole: Lazarus APT goes back to the well

IronHusky updates the forgotten MysterySnail RAT to target Russia and Mongolia

GOFFEE continues to attack organizations in Russia

Subscribe to our weekly e-mails