Blended security threats on the rise, IBM says

The number of malware code samples grew 30 percent in 2007, and while overall software vulnerabilities were down, high-risk vulnerabilities increased

By Ellen Messmer, Network World
February 12, 2008

Talkback

E-mail

Printer Friendly

Reprints

The number of malware code samples in the wild grew 30 percent to 410,000 in 2007, according to security researchers at IBM's ISS division. The Storm worm in particular accounted for 13 percent of the entire malware collection.

IBM released these findings and more in its security trends report for 2007, which summarizes the threat landscape based on IBM's research on malware, software vulnerabilities, phishing, and Web sites with questionable content.

While software vulnerabilities decreased 5.4 percent last year to 6,437 disclosures by vendors, the most risky "high impact" vulnerabilities that allow immediate remote or local access increased from 16.2 percent in 2006, the first such increase noted since 2004.

Kris Lamb, operations manager at X-Force Research and Development at IBM ISS, says one thing that struck him about this year's threat analysis is that half of the software vulnerabilities reported by vendors in 2007 had no vendor patch available for them.

"It seems that vendors have not produced patches, and we don't know why," Lamb says.

Microsoft, Apple, Oracle, IBM, and Cisco, together accounted for 13.6 percent of the total number of vulnerabilities -- and left 20 percent of those vulnerabilities unpatched, the report points out.

On the spam front, average spam message size is down to pre-2005 levels, corresponding with a decrease in image-based spam, the 2007 IBM ISS report says.

The report also notes that 9 percent of Internet content can be classified as unwanted criminal, pornographic, or "socially deviant" as compared with 12.5 percent last year. Socially deviant content is said to include political extremism, hate sites, and groups advocating discrimination. The United States far outpaces other countries as the primary hosting source of this unwanted content, accounting for roughly 40 percent to 48 percent in each category.

In its malware-code analysis, IBM ISS says there's a shift from mass-mailing worms to sophisticated targeted Trojan attacks with rootkits and other blended threats. Trojans made up the single largest class of malware in 2007, accounting for 26 percent of the total. But IBM ISS believes that malware code is becoming less distinct as simply a virus, worm, spyware, backdoor, or password stealer.

"Modern malware is now the digital equivalent of the Swiss Army knife, and 2007 data continues to support this," the report concludes.

Add to:

Digg

Talkback:

comment Post a Comment

MOST COMMENTS

>> Talkback: Have your say

THE TOP THREE WAYS TO CUT COSTS IN 2009
With the current economic environment, organizations are looking for ways to cut costs. With Oracle Content Management, you can cut costs in three ways in 2009: consolidation, process automation and compliance. Learn more from this webcast sponsored by Oracle.

» Click here to view this Webcast

Enterprise Data Security Solutions Guide
Data security used to be about outside threats. These days the biggest challenge for data-driven organizations is the management of secure information from the inside out. Data is available on laptops, your network and even USB devices, but not always secure. Read this Solutions Guide to learn the best ways to keep it safe. Sponsored by ISC2

» Click here to download now

- Special Advertising Partners -

WHITE PAPERS

Effective Security with a Continuous Approach to ISO 27001 Compliance - The ISO 27001 standard is primarily referred to as the Information Security Management System (ISMS) certification standard...
Remote Data Protection at Organizations Today - The following report represents top-line results of an InfoWorld.com that reached out to remote data protection decision...
The Handbook of Application Delivery - This handbook analyzes each of the four components of application delivery (planning, network and application optimization...
Optimizing Infrastructure Control - This paper describes how an investment in configuration assessment and change auditing solutions can stabilize IT operations...
IT Service Management: Metrics That Matter - Download this whitepaper and learn from Gene Kim, well-known authority on IT processes, about the metrics that matter most...
Choosing the Right Hardware and Software for Data Protection Solution - Data protection seems to be getting more complicated each day, but businesses have a number of good choices of what to use...

» Technology White Papers Library

Technology White Papers by Topic

Technology White Papers E-mail Alert

Find out when the latest white paper is available:

INFOWORLD MARKETPLACE

Deliver REMOTE SUPPORT Easily. Try WebEx FREE! - DOWNLOAD WEBEX SUPPORT CENTER FREE! Deliver efficient, effective support. CRUSH SUPPORT LOG JAMS!
Migrating to an IP-VPN? XO Can Make It Happen - Learn the five critical success factors with a free whitepaper from XO Enterprise Solutions.
Sign up to TRY WEBEX SUPPORT CENTER FOR FREE! - Get your FULL FEATURED trial here. Share documents and applications, address support challenges.
IP Networks Boost Secure Health Communications - AT&T provides secure communication to keep health care moving forward.
Why a CMDB? - IT best practices (ITIL) have shown the benefits of a CMDB. Click for whitepapers.

» BUY A LINK NOW

Blended security threats on the rise, IBM says

MOST COMMENTS

» Technology White Papers Library

Technology White Papers by Topic

Technology White Papers E-mail Alert

Video

Podcasts

InfoWorld Blogs

Columnists

Find Products and Companies

Resource Center

Sponsored Technology Links

Sponsored Technology Links
Symantec is comprehensive endpoint protection. Free trial. - - See the power of the new Quad-Core AMD Opteron processor. File Integrity Monitoring: Prove compliance and secure your IT environments - - See how Rackspace can optimize your IT dollars. Use Ensemble - quickly create composite applications. - Nokia - Interaction between Nokia Intrusion Prevention and Nokia Firewall Nokia - The Case for a Specialized Security Platform HP - HP Architect Planning Tools for MS Office Communications Server 2007 HP - Best Practices for Deploying Microsoft Office SharePoint Server 2007 HP - HP ProLiant BL480c Server Blade Microsoft Exchange Server 2007		HP - HP Smart Array P800 Controller and HP MSA60 2,500 Oracle - Top 3 Ways to Cut Costs in 2009 with Oracle Content Management Infoblox - The Costs and Impacts of DNS and IP Address Management HP - HP StorageWorks products-control, consolidation and confidence. HP - Predict the future with HP Insight Power Manager HP - Affordable technology-no compromise. HP server solutions. Oracle - Oracle Universal Content Management Oracle - Information Workplace Platforms: Oracle vs. Microsoft Oracle - Performance Monitor: ERP at the Speed of Light Microsoft - Learn about the software-based VoIP solution from Microsoft. Oracle - Nucleus Report: Who's ready for SMB?

	HOME NEWS BLOGS PODCASTS VIDEOS TECHNOLOGIES TEST CENTER EVENTS	About \| Advertise \| Awards \| RSS \| Contact Us
Copyright © 2009, Reprints, Permissions, Licensing, IDG Network, Privacy Policy, Terms of Service. All Rights reserved. InfoWorld is a leading publisher of technology information and product reviews on topics including viruses, phishing, worms, firewalls, security, servers, storage, networking, wireless, databases, and web services. CIO :: ComputerWorld :: CSO :: Demo :: GamePro :: Games.net :: IDG Connect :: IDG World Expo Industry Standard :: IT World :: JavaWorld :: LinuxWorld :: MacUser :: Macworld :: Network World :: PC World :: Playlist TecChannel :: TecCommunity