Top ten malware threats and hoaxes reported to Sophos in October 2006

Sophos Press Release

Twelve months on, home users still failing to heed advice to Get Safe Online

Sophos, a world leader in IT security, has revealed the most prevalent malware threats and hoaxes causing problems for computer users around the world during October 2006.

The report, compiled from Sophos's global network of monitoring stations, shows that while the well-known Netsky-P has proved once again to be the most prevalent piece of malware in circulation, variants of the Stratio worm (also known as Stration or Warezov) have entered the top ten for the first time. Several hundred variants of the worm were widely spammed out during the month, on some days accounting for more than 50% of all reported malware.

Sophos experts note that on the one-year anniversary of Get Safe Online - the UK's national campaign to raise awareness about the risks of leaving computers unprotected online - established virus families such as Netsky, Mytob and Zafi continue to cause havoc for internet users, despite protection having long been available.

The proportion of infected email continues to remain low, at just one in 300 (0.34%), while during October Sophos identified 3,076 new threats, bringing the total number of malware protected against to 193,821.

Position Last
Virus Percentage of reports
1 1 W32/Netsky-P
2 2 W32/Mytob-AS
3 New W32/Stratio-Zip
4 3 W32/Bagle-Zip
5 5 W32/Netsky-D
6 New W32/Stratio-AY
7 7 W32/Mytob-C
8 8 W32/Zafi-B
9 5 W32/Nyxem-D
10 6 W32/Mytob-E
Others 39.6%

"This is like a new dog employing old tricks - Stratio has made it into the top ten because it used numerous social engineering tactics and has been aggressively spammed out," said Carole Theriault, senior security consultant for Sophos. "Home users who haven't installed or updated their anti-malware protection remain the most vulnerable targets, and if old-timers like Netsky and Mytob are still getting through users' defenses, it's a sure bet that new malware is doing the same thing. Given these circumstances you have to ask, are awareness campaigns like Get Safe Online really having the intended impact? We're still awaiting firm evidence that they have actually connected with the general public."

The top ten hoaxes and chain letters in October 2006 were as follows:

Position Hoax Percentage of reports
1 Olympic torch
2 Hotmail hoax
3 WTC Survivor
4 Bonsai kitten
5 MSN is closing down
6 Bill Gates fortune
7 Meninas da Playboy
8 Justice for Jamie
9 A virtual card for you
10 Budweiser frogs screensaver
Others 53.5%

Graphics of the above top ten malware chart are available.

More than 100 million users in 150 countries rely on Sophos’ complete security solutions as the best protection against complex threats and data loss. Simple to deploy, manage, and use, Sophos’ award-winning encryption, endpoint security, web, email, mobile and network security solutions are backed by SophosLabs - a global network of threat intelligence centers. Sophos is headquartered in Oxford, U.K., and is publicly traded on the London Stock Exchange under the symbol “SOPH.” More information is available at