Storm worm deluges February malware chart
By Rene Millman,
The Storm worm has thundered to the top of the malware charts in February, according to findings from security appliance vendor Fortinet.
The worm, also known as Tibs, accounted for 3.91 per cent of all malware detected in the month. Only phishing emails were more prevalent than the worm.
According to Guillaume Lovet, threat response team leader at Fortinet, no less than 36 different variants of the Storm Worm were seen active this month.
"The overwhelming presence of the Storm worm is not without consequence, as it is being leveraged to generate and relay massive amounts of spam," said Lovet.
"However, the battle against spam is not lost. A purely factual analysis of the situation tends to prove that in the final race to arms against content analysis filters, spammers are losing ground."
The company found that on 8 February, one variant of the Storm worm accounted 60 per cent of all Tibs-related detections.
Lovet said that one very observable consequence of the worm was an increase in the volume of spam emails that has been occurring since the end of 2006.
The Storm worm, alongside another worm named "Stration", were purely meant to create large-sized botnets, more or less centralised. Stration's net consists in syndicated smaller traditional IRC botnets while Tibs implement a peer-to-peer botnet.
"Reducing the number of infected machines would effectively tackle the spam problem, at least, in the proportions it has taken today," said Lovet. "The problem is the number of infected machines, on the contrary, is growing everyday. The reasons for that are multi-fold, but the consequence is that we are left trying to cope with massive amounts of spam."
Lovet added that content analysis is not the only means to block spam.
"Analysing the envelope rather than the content of the letters is a strategy frequently implemented in anti-spam filtering systems," he said. "For instance, it may consist in comparing the incoming IP address to real time block lists or reputation systems."
He said that although such approaches are often purely reactive, leaving windows of opportunity opened for rogue IP addresses to send out spam, but it could also help reduce the amount of bulk mails reaching end users boxes.
You may also like...
Sponsored Links
advertisement
You may also like...
Latest Security Analysis & Insight
What is your password worth?
Would you be tempted to sell off company passwords for a fee? If not, seems like you're in the minority, acccording to research.
- Macs under attack?
- Intel: security inside
- Are you spending too much on IT security?
- Does the government want to snoop on your data?
- Eurocrats versus the cyber criminals
- The truth about spam
- Google and privacy: What’s the problem?
- Q&A: Symantec’s CISO on the source code hack
- RSA: Back from the breach?
Latest Security Reviews
Check Point 2210 Appliance review
Rating: 
advertisement
Most popular
- Apple iPad 3 vs iPad 2 head-to-head review
- Hutchison denies it will pull plug on Three UK
- EMC World 2012: Tucci declares Documentum is here to stay
- ICO: Fines for cookie law breakers
- EMC World 2012: EMC talks up cloud, security and big data
- Dell PowerEdge R820 review
- Sony Vaio T13 Ultrabook review: First look
- BlackBerry 7 OS certified to carry 'Restricted' UK government information
- Facebook floatation marred by Nasdaq glitch
- CIO: Career is over?
Latest News Videos in Security
IT PRO Podcast: Are UK data protection laws flawed?
PlayWe bring in two experts to talk about the problems with UK data protection law and the way it is managed.
Register for IT PRO
You'll get exclusive member benefits including free whitepapers, downloads, Webinars and weekly newsletters full of the latest IT PRO news, reviews, insight and expertise.
