Ten emerging malware trends for 2007

THREAT MONITOR
Ten emerging malware trends for 2007

Ed Skoudis
01.18.2007

http://searchsecurity.techtarget.co...-427&ad=575753&asrc=EM_NLT_922378&uid=5543928

It's a good read

Mods: move if necessary

 

Good read
Yes, it should be in this section

 

I was surprised not to see Rouge anti spyware programs on the list.

 

Scary stuff, I´m worried the most about nr 3,5,8,9 and 10. Btw, I have disabled *.CRT files from running on my system, this should take care of nr 9.

 

or as one unviversity has done
List of Banned File Extensions

or as you linked

 

Yes, it covers a lot of newly used techniques.

Sadly, like most of these kind of reports out there, it forgot one of the most important (if not THE most important) changes in malware attacks, that being targeted attacks (such as Country-IP based attacks). These have been seen being used by Gromozon, arguably one of the most 'innovative' (and nastier) malwares out there, as well as a bunch of others (including Rustock). The goal is pretty clear here: by targeting countries or IP ranges and redirecting all the others to innocuous pages, there are many more chances that security companies will miss the samples and not cover the malware for a long time.

 

http://www.cheswick.com/ches/map/gallery/index.html

http://www.cheswick.com/ches/map/gallery/i-isp.gif


Colored by ISPs, the city-states of the Internet.