Microsoft Malware Protection Center
- Out of these prevalent threat families worldwide, 8 are password stealers collecting online game credentials, online banking passwords or other user identities of users’ online accounts.
- 8 of them are fake security products or trojan downloaders for rogues. The MSRT now covers the following most high profile rogues
o Win32/FakeVimes
o Win32/PrivacyCenter
o Win32/FakeScanti
o Win32/FakeSecsen
o Win32/FakeXPA
o Win32/Yektel
o Win32/Winwebsec
o Win32/InternetAntivirus
o Win32/FakeSpypro
o Win32/FakeRean
- 5 are trojan downloaders or droppers, a threat category which is often an infection vector to deliver drive-by malware to the victims’ computers.
- Win32/Koobface is still on top 25 though it has dropped out of top 10. Online Social Network sites such as Facebook continues to boost their security hardening to protect their customers and we welcome their actions.
- Win32/Zlob had dropped out of the list in recent months after being extremely prevalent for almost three years. We observed that the Zlob authors appeared to move to somewhere else in our Oct 2008 blog and Jan 2009 blog.
The TaterF worm, an online game password stealer, took the lead so far this month being removed by MSRT from 239,870 machines.
Certifiedbug November 3, 2009.
Microsoft Security Intelligence Report volume 7
According to the SIR report the number of machines infected with TaterF has increased to 4.9 million in the first half of this year. That’s up from 2 million machines in the second half of last year.
{ 0 comments }
