IT security and control firm Sophos has revealed the most
prevalent malware threats and countries causing problems for
computer users around the world during December 2007.
While the study, compiled by Sophos's global network of
monitoring stations, has shown only minor changes since November, a
Sophos poll has revealed that 70 percent of
those surveyed believe that 2008 will actually be just as bad or
worse for IT security than 2007.
Top ten web threats
The top ten list of web-based malware threats in December 2007
reads as follows:
Mal/Iframe, which works by injecting malicious code into
webpages, retains its position as leader of the chart, despite not
having the same impact as the previous month when it accounted for
almost 70 percent of web-based attacks. Mal/ObfJS, a method by
successfully held onto second place.
"Although December saw Mal/Iframe's dominance at the top of the
chart begin to wane, computer users must not get complacent - it
still accounted for more than half of all web-based attacks seen
last month," said Graham Cluley, senior
technology consultant at Sophos. "Yet, despite the pessimistic
figures and the fact that less than a third of people believe there
will be any improvement in the situation in 2008, it is possible to
combat the cybercriminals with an effective IT security solution.
Hopefully the public's negative viewpoint will spur both businesses
and consumers on to recognise the seriousness of these threats and
make sure their networks and data are fully protected from existing
malware, as well as emerging attacks."
Top malware-hosting countries
The top ten list of countries hosting malware-infected webpages
in December 2007 reads as follows:
||Percentage of reports
||China (incl HK)
China, a country notoriously plagued by Mal/Iframe in previous
months, continues to host the most infected webpages. However China
is not the only culprit as the United States and Russia have risen
in the charts, with America storming from 19 percent in November to
serving up over a third of the world's malicious webpages in
This month also saw Canada and France drop out of the top ten,
to be replaced by the Netherlands and Italy.
Top ten email threats
The top ten list of email-based malware threats in December 2007
reads as follows:
Overall, 0.09 percent of emails, or one in 1111, had malicious
attachments in December 2007, with Pushdo retaining its position as
the most prevalent email-based malware detected in December.
Top ten hoaxes and scams
The top ten list of email hoaxes and scams in December 2007
reads as follows:
Sophos experts have compiled simple best practice guides to
adopting a multi-layered defense. With blended threats, spam and
phishing attacks on the rise it has never been more important to
educate end users about how best to protect themselves.
Sophos recommends companies protect themselves with a consolidated solution which can control network access and defend
against the threats of spam, hackers, spyware and viruses.
Do you think 2008 will be a better year for
internet security than 2007?
|Yes, things will be
|No, 2008 will be a
worse year for security
|About the same
* Sophos poll hosted on the Sophos website, 621
respondents, December 2007
Disclaimer: Please bear in mind that this poll is not
scientific and is provided for information purposes only. Sophos
makes no guarantees about the accuracy of the results other than
that they reflect the choices of the users who participated.