Report: Malicious spam spikes in the enterprise

Be the first to comment | 31I like it!
October 30, 2008, 08:30 AM —  CSO — 

Cyber criminals are increasingly turning to spam as a means of infecting computers, according to a new report from IT security and control firm Sophos.
The Boston-based firm found an eight-fold increase in the number of spam emails containing dangerous attachments that were sent to business organizations between July and September 2008. The Q3 Dirty Dozen spam report not only documents an alarming rise in the proportion of spam emails, but an increase in spam attacks using social engineering techniques to snare unsuspecting computer users, according to Sophos senior technology consultant Graham Cluley.

The survey found that one in every 416 emails contained a dangerous attachment designed to infect the recipient's computer. That number is up from only one in every 3,333 the previous quarter, said Cluley.

Much of the increase is due to several large-scale malware attacks made by spammers during the period, he said. The worst single attack was the Agent-HNY Trojan horse, which was sent disguised as the Penguin Panic arcade game for Apple iPhones. Other major incidents included the EncPk-CZ Trojan, which pretended to be a Microsoft security patch, and the Invo-Zip malware, which masqueraded as a notice of a failed parcel delivery from firms such as UPS.

"While many people may know better than to click on an attachment that says 'sexy pictures', these new tactics are more alluring," said Cluley "Too many people are clicking without thinking -- exposing themselves to hackers who are hell-bent on gaining access to confidential information and raiding bank accounts."

Spammers continue to embed malicious links and spam out creative and timely attacks designed to prey on users' curiosity, said Cluley. In August, a wave of spam messages claimed to be breaking news alerts from MSNBC and CNN. Each email encouraged users to click on a link to read the news story, but instead took unsuspecting users to a malicious webpage which infected Windows PCs with the Mal/EncPk-DA Trojan horse.

"When a spam email appears to come from a trusted source, too many users are fooled and end up clicking through to a malicious webpage," said Cluley.

Education continues to be key to preventing infection, said Cluley, who encouraged business organizations to give users initial and also refresher instruction on avoiding suspicious emails.

"The advice is simple: you should never open unsolicited attachments, however tempting they may appear," he said.

The United States remained in the number one spot for relaying spam across the globe, generating 18.9 percent of the malicious emails. Russia has increased its contribution to the world spam problem, soaring from 4.4 percent last year, to 8.3 percent during this time period, according to the report. Turkey, China and Brazil were the other countries on the top-five spam relaying list.

» posted by ITworld staff

CSO

Sign up for ITworld's Daily newsletter
Follow ITworld on Twitter @IT_world

I like it!
Close

On Twitter now

Sophos

Powered by Twitter
You are logged in | Sign out
Sign in and post to Twitter

What are you thinking?

Cancel Tweet sent

On Twitter now

Post a comment
The content of this field is kept private and will not be shown publicly.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd>
  • Lines and paragraphs break automatically.
peer-to-peer

Brian Proffitt
Microsoft/Novell: Breaking Down the Coupon Numbers

Esther Schindler
Drupal's Dries Buytaert on Building the Next Drupal

Tom Henderson
Top Ten General Operating Systems Rants

pasmith
PS3 motion controller delayed; goes up against Project Natal

sjvn
Neolithic Windows security hole alive and well in Windows 7

claird
Perl source code comparison makes for good reading

mikelgan
Cell phones don't create stress or interrupt much

Sandra Henry-Stocker
How to: The Unix Interview

 

Where Google Chrome security fails: the password
I heard mention that the Chrome OS will have some sort of encryption available a la bitlocker. If it's possible to encrypt personal data using another password or key, then it may have potential for very secure data.... And Ubuntu has an 'encrypt home directory' option, perhaps google should follow suit.
- Dann

Join the conversation here

The Daily Tip

The Daily TipQuick, practical advice for IT pros. Made fresh daily.

Hot tips:

Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.

Newsletters

Subscribe to ITWORLD TODAY and receive the latest IT news and analysis.

I would like to receive offers via email from ITworld partners.
By clicking submit you agree to the terms and conditions outlined in ITworld's privacy policy.
Marketplace