Dorf to SQL in a year
Reviewing Chee and Samir’s posts for Dec 26 2007 reminded me how much the Dorf family of malware dominated thinking in 2007. I don’t know the actual figure but I suspect a significant number of blog posts and identities written in 2007 were related to the Dorf campaign.
If I were to review the posts for 2008, particularly the last few months, then they would be completely dominated by SQL Injection attacks. Despite the patches being available we continue to see websites compromised through their backend databases. This continues to be a particularly worrying trend as many shopping sites rely on this technology to provide us with the goods we want and according to the news today on the BBC, we are even buying online now on Christmas Day. That could make a particularly unwelcome Christmas Present for someone over the holiday season.
As for today, the malware queue has seen a typical Fake AV Trojan plus some Agent Trojans. In the meantime the spam queues have seen the usual dominance of pills along with several gambling campaigns. It’s been another normal day here at SophosLabs
Posted on December 26th, 2008 by Stuart Taylor, Manager SophosLabs UKFiled under: General, Malware, Spam
Free virus scan - Download the Sophos Threat Detection Test
